Banking malware that harvests online banking credentials made up 56 percent of all malicious payloads at the end of 2018. Emotet, Panda Banker and Ursnif comprised almost 97 percent of observed banking trojans. Ransomware dropped even further in Q4 to just one tenth of 1% of overall malicious message volume. Business email compromise (BEC) spiked considerably, continuing its inexorable growth; the number of email fraud attacks against targeted companies increased 226 percent quarter-on-quarter and a whopping 476 percent from two years ago.
Source: https://threatpost.com/banking-trojans-top-threat-email/141814/