Check Point Research (CPR), the Threat Intelligence arm of Check Point Software Technologies has released its latest Brand Phishing Ranking for Q2 2024. The ranking highlights the brands most frequently imitated by cybercriminals in their attempts to deceive individuals and steal personal information or payment credentials.
For the second quarter this year, Microsoft remained the most imitated brand in phishing attacks, accounting for more than half of all attempts with 57%. Apple jumped to the second spot with 10%, moving up from fourth position in the first quarter of 2024, and LinkedIn kept its previous third place ranking with 7% of such attempts. Meanwhile, there were new entries to the list with Adidas, WhatsApp, and Instagram moving into the top 10 for the first time since 2022.
The Technology sector remained the most impersonated industry in brand phishing, followed by Social Networks and Banking. Technology companies often hold sensitive information, including personal data, financial information, and access to other accounts, which makes them valuable targets for attackers. Companies such as Microsoft, Google and Amazon, who all appeared on the list, deliver essential and frequently used services such as email, cloud storage, and online shopping. That means people are more likely to respond to messages that appear to be from these critical service providers.
Omer Dembinsky, Data Group Manager at Check Point Software, emphasized the persistent threat of phishing attacks, stating, “Phishing attacks remain one of the most pervasive cyber threats and are often the entry point for much larger scale campaigns a supply chain. To protect against phishing attacks, users should always verify the sender’s email address, avoid clicking on unsolicited links, and enable multi-factor authentication (MFA) on their accounts. Additionally, using security software and keeping it updated can help detect and block phishing attempts.”
Top Phishing brands
Below are the top 10 brands ranked by their overall appearance in brand phishing events during Q2 2024:
- Microsoft (57%)
- Apple (10%)
- LinkedIn (7%)
- Google (6%)
- Facebook (1.8%)
- Amazon (1.6%)
- DHL (0.9%)
- Adidas (0.8%)
- WhatsApp (0.8%)
- Instagram (0.7%)