Microsoft Tops List of Brands Exploited in Phishing Attacks, Adidas and Social Networks Also Targeted

SECURITYMicrosoft Tops List of Brands Exploited in Phishing Attacks, Adidas and Social Networks Also Targeted
  • Microsoft is the brand under which cybercriminals most often impersonate in phishing attacks. More than half of all attempts (57%) used the trademark Windows logo.
  • Based on the latest data from Check Point Research, new names have recently appeared on the list of brands used by hackers: Adidas, WhatsApp, and Instagram.
  • The tech sector remained the most frequently fished industry, closely followed by social networks and banking.

An overwhelming majority of cybercriminals use tech brands in phishing attacks, with Microsoft being the most popular – reports Check Point Research, which also highlights the growing popularity of attacks using the Adidas image.

Microsoft is the brand under which cybercriminals most often impersonate in phishing attacks. Over half of all attempts (57%) used their distinctive Windows logo. Apple moved into second place with a 10% share, advancing from fourth position in the first quarter of 2024, while LinkedIn retained third place with 7% of attack attempts.

As per the latest data from Check Point Research, new entrants to the list of brands used by hackers are Adidas, WhatsApp, and Instagram.

The tech sector remained the most frequently phished industry, closely followed by social networks and banking. It is these tech companies that often hold sensitive information, including personal data, financial information, and access to other accounts, making them coveted targets for attackers. Microsoft, Google, and Amazon offer essential and frequently used services, like email, cloud storage, and online shopping, which makes people more likely to respond to messages appearing to be from these companies.

“Phishing attacks remain one of the most common cyber threats and are often a starting point for larger scale campaigns, including supply chain attacks. To protect themselves from such attacks, users should always verify the sender’s email address, avoid clicking on unwanted links, and enable multi-factor authentication (MFA) on their accounts. Additionally, using security software and regularly updating it can help detect and block phishing attempts,” believes Omer Dembinsky, a data analytics group manager at Check Point Software.

Check Point Research listed the top 10 brands most frequently appearing in phishing incidents in the second quarter of 2024, they are as follows:

  1. Microsoft (57%)
  2. Apple (10%)
  3. LinkedIn (7%)
  4. Google (6%)
  5. Facebook (1.8%)
  6. Amazon (1.6%)
  7. DHL (0.9%)
  8. Adidas (0.8%)
  9. WhatsApp (0.8%)
  10. Instagram (0.7%)

In recent weeks, analysts have observed and described several phishing campaigns targeting users by imitating Adidas’ brand websites. For example, the websites adidasyeezys[.]cz and adidasyeezys[.]it were designed to trick victims into recognizing them as authentic Adidas Yeezy websites, perfectly imitating the look of the official Adidas website. The fake websites aim to steal login information and personal details. Check Point Research experts are also warning about “Instagram” attacks, a brand that has been featured in several large phishing campaigns last quarter.

Source: https://managerplus.pl/cyberprzestepcy-wykorzystuja-marki-microsoft-i-adidas-aby-krasc-nasze-dane-38602

Exit mobile version