Trends to watch in 2026: Calendar phishing and opportunistic service abuse

Phishing attacks are shifting away from high-volume campaigns toward quieter, harder-to-detect techniques. Opportunistic abuse of services and ICS phishing (calendar phishing) have emerged as two of the most effective ways attackers bypass modern email defenses.

In this live webinar, security researcher John Hammond joins Sublime Security to unpack why these techniques are showing up more frequently, what they look like in real environments, and how defenders are responding.

What we’ll cover:

• Why abuse of smaller services and ICS phishing are emerging as hot attack trends
• How attackers use low volume and legitimate infrastructure to evade detection
• What signals and behaviors matter most for practitioners
• How modern email security platforms approach detection and response
• A practical look at how Sublime handles these attack patterns