Phishing Attacks Impersonate Microsoft's Brand the Most
- By Kurt Mackie
- October 19, 2020
Security solutions firm Check Point this week gave Microsoft the dubious distinction of being the "most imitated" company used for phishing attacks.
Based on its third quarter analysis, Check Point announced that the top brands used in phishing attacks in Q3 were as follows:
- Microsoft (related to 19% of all brand phishing attempts globally)
- DHL (9%)
- Google (9%)
- PayPal (6%)
- Netflix (6%)
- Facebook (5%)
- Apple (5%)
- Whatsapp (5%)
- Amazon (4%)
- Instagram (4%)
Microsoft topped the list when the phishing attempt was made using e-mails, as well as when the phishing attempt happened via a Web site. The aim of these phishing attacks is typically to steal user credentials.
The Microsoft brand gets used the most for these phishing attacks because of the work-from-home scenario that's common now during the COVID-19 pandemic. The phishing efforts typically try to get users to reset their Microsoft Office 365 credentials, explained Maya Horowitz, Check Point's director of threat intelligence and research.
"As always, we encourage users to be cautious when divulging personal data and credentials to business applications, and to think twice before opening email attachments or links, especially emails that claim to be from companies, such as Microsoft or Google, who are most likely to be impersonated," Horowitz said in a released statement.
Kurt Mackie is senior news producer for 1105 Media's Converge360 group.