Press ReleaseCyber SafetyThreat Detection & Defense

Check Point Research Unveils Q3 2024 Brand Phishing Trends, with Microsoft Most Imitated

Microsoft Still the Primary Target in Phishing Attacks

Check Point Research, the Threat Intelligence arm of Check Point® Software Technologies Ltd. and a leading Artificial Intelligence (AI)-powered, cloud-delivered cybersecurity platform provider, has released its latest Brand Phishing Ranking for Q3 2024. This report sheds light on the brands most frequently imitated by cybercriminals, in their attempts to deceive and steal personal information or payment credentials, emphasising the ongoing risks associated with phishing attacks in today’s digital landscape.

In the third quarter, Check Point Research found that Microsoft continues to dominate as the most imitated brand, accounting for 61% of all brand phishing attempts. Apple retains its second position with 12%, while Google has climbed to third place with 7%. Additionally, Alibaba makes its debut in the top 10 at seven place, and Adobe reenters the rankings at eight, marking its first appearance since Q2 2022. The Technology sector remains the most impersonated industry, followed by Social Networks and Banking, highlighting the persistent vulnerabilities faced by major online service providers.

Omer Dembinsky, Data Group Manager at Check Point Software, noted, “The consistent prevalence of phishing attacks demonstrates the need for heightened awareness and security measures. Users must remain vigilant by verifying email sources, avoiding suspicious links, and utilising multi-factor authentication (MFA) to protect their personal and financial information from cyber threats.”

Check Point Research Identifies Top Phishing Brands

Below are the top 10 brands ranked by their overall appearance in brand phishing events during Q3 2024 as found by Check Point Research:

  1. Microsoft – 61%
  2. Apple – 12%
  3. Google – 7%
  4. Facebook – 3%
  5. WhatsApp – 1.2%
  6. Amazon – 1.2%
  7. Alibaba – 1.1%
  8. Adobe – 0.8%
  9. Twitter – 0.8%
  10. Adidas – 0.6%

Phishing Scams Targeting WhatsApp Users

A new phishing website, whatsapp-io.com, has been identified by Check Point Research as a threat to WhatsApp users. Although currently unreachable, the site was designed to mimic a WhatsApp security center, prompting users to enter personal information, including their phone number and country or region, under the pretense of resolving account anomalies. This website is part of a broader trend, with multiple similar domains, such as whatsapp-as.com, whatsapp-ia.com, and whatsapp-li.com, being registered and reported around the same timeframe.

Alibaba Impersonation

In another alarming development, a malicious phishing website alibabashopvip\.com, has emerged, impersonating the Alibaba e-commerce retail brand. This fraudulent site aims to deceive users by mimicking Alibaba’s official branding and offering counterfeit products. The site, which appears in Vietnamese, encourages visitors to log in or register, potentially leading to the theft of personal information and payment details. Notably, Alibaba has made its top 10 debut in this quarter’s rankings.

With the rise of phishing attempts targeting well-known brands, it is essential for users to stay informed and proactive in their online security practices. Ensuring that devices are equipped with updated security software and being skeptical of unsolicited communications can significantly reduce the risk of falling victim to cyberattacks.

CSA Editorial

Launched in Jan 2018, in partnership with Cyber Security Malaysia (an agency under MOSTI). CSA is a news and content platform focusing on key issues in cybersecurity in the region. CSA is targeted to serve the needs of cybersecurity professionals, IT professionals, Risk professionals and C-Levels who have an obligation to understand the impact of cyber threats.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *