Check Point Research has unveiled its latest Brand Phishing Ranking for Q3 2024. This report provides critical insights into the brands most frequently targeted by cybercriminals, underscoring the persistent risks of phishing attacks in our increasingly digital world.
Leading Targets: The Most Imitated Brands
In the third quarter of 2024, Microsoft continues to reign as the most imitated brand, constituting 61 percent of all brand phishing attempts. This dominance highlights the company’s extensive user base and the value of its data to cybercriminals.
Apple maintains its position as the second most impersonated brand at 12 percent, reflecting the ongoing appeal of its products and services. Google has surged to the third spot, accounting for 7 percent of phishing attempts, illustrating the increasing threats faced by users of its services.
This quarter marks significant shifts in the rankings:
Alibaba enters the top 10 for the first time at seventh place, with 1.1 percent of phishing events, while Adobe makes a comeback at eighth place with 0.8 percent, its first appearance since Q2 2022.
The overall top 10 is rounded out by Facebook (3 percent), WhatsApp (1.2 percent), Amazon (1.2 percent), Twitter (0.8 percent), and Adidas (0.6 percent).
Sector Vulnerabilities
The technology sector remains the most impersonated industry, followed closely by social networks and banking. This trend highlights the ongoing vulnerabilities of major online service providers, which are frequently targeted due to their vast user bases and valuable data.
“The consistent prevalence of phishing attacks demonstrates the need for heightened awareness and security measures. Users must remain vigilant by verifying email sources, avoiding suspicious links, and utilizing multi-factor authentication (MFA) to protect their personal and financial information from cyber threats,” Omer Dembinsky, Data Group Manager at Check Point Software, said.
Noteworthy Phishing Threats
WhatsApp Users at Risk: A newly identified phishing site, whatsapp-io.com, mimics a WhatsApp security center, urging users to enter personal details to resolve fictitious account issues. Although currently inactive, this site is part of a larger trend of phishing scams targeting WhatsApp users.
Alibaba Impersonation: A fraudulent site, alibabashopvip.com, has emerged, impersonating the Alibaba brand. Designed to deceive users, it encourages them to log in or register, potentially compromising personal and payment information.
With phishing attempts increasingly targeting well-known brands, users must remain vigilant and proactive about their online security. Implementing updated security software, being skeptical of unsolicited communications, and practicing safe browsing habits are essential steps to minimize the risk of falling victim to cyber attacks.
