Add as a preferred source on Google


News

Phishing Attacks Impersonate Microsoft's Brand the Most

Security solutions firm Check Point this week gave Microsoft the dubious distinction of being the "most imitated" company used for phishing attacks.

Based on its third quarter analysis, Check Point announced that the top brands used in phishing attacks in Q3 were as follows:

  1. Microsoft (related to 19% of all brand phishing attempts globally)
  2. DHL (9%)
  3. Google (9%)
  4. PayPal (6%)
  5. Netflix (6%)
  6. Facebook (5%)
  7. Apple (5%)
  8. Whatsapp (5%)
  9. Amazon (4%)
  10. Instagram (4%)

Microsoft topped the list when the phishing attempt was made using e-mails, as well as when the phishing attempt happened via a Web site. The aim of these phishing attacks is typically to steal user credentials.

The Microsoft brand gets used the most for these phishing attacks because of the work-from-home scenario that's common now during the COVID-19 pandemic. The phishing efforts typically try to get users to reset their Microsoft Office 365 credentials, explained Maya Horowitz, Check Point's director of threat intelligence and research. 

"As always, we encourage users to be cautious when divulging personal data and credentials to business applications, and to think twice before opening email attachments or links, especially emails that claim to be from companies, such as Microsoft or Google, who are most likely to be impersonated," Horowitz said in a released statement.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Featured

  • Microsoft Dismantles RedVDS Cybercrime Marketplace Linked to $40M in Phishing Fraud

    In a coordinated action spanning the United States and the United Kingdom, Microsoft’s Digital Crimes Unit (DCU) and international law enforcement collaborators have taken down RedVDS, a subscription based cybercrime platform tied to an estimated $40 million in fraud losses in the U.S. since March 2025.

  • Sound Wave Illustration

    CrowdStrike's Acquisition of SGNL Aims to Strengthen Identity Security

    CrowdStrike signs definitive agreement to purchase SGNL, an identity security specialist, in a deal valued at about $740 million.

  • Microsoft Acquires Osmos, Automating Data Engineering inside Fabric

    In a strategic move to reduce time-consuming manual data preparation, Microsoft has acquired Seattle-based startup Osmos, specializing in agentic AI for data engineering.

  • Linux Foundation Unites Major Tech Firms to Launch Agentic AI Foundation

    The Linux Foundation today announced the creation of a new collaborative initiative — the Agentic AI Foundation (AAIF) — bringing together major AI and cloud players such as Microsoft, OpenAI, Anthropic and other major tech companies.

Most   Popular