sb-eu logo
Story image

Cybercriminals most likely to impersonate Apple, Netflix in phishing attacks

16 Apr 2020

Cybercriminals are most likely to impersonate major global tech companies like Apple, Netflix, Yahoo, WhatsApp and PayPal in order to trick people to clicking links or downloading attachments in malicious phishing emails.

That’s according to Check Point’s Q1 2020 Brand Phishing Report, which names the brands most likely to be impersonated in phishing campaigns.

The report, which is based on information from Check Point’s ThreatCloud intelligence, shows that cybercriminals especially love to impersonate the tech industry, with banking and media following close behind.

Check Point researchers say that this broad choice of industry sector approach covers the most well-known consumer sectors, particularly during the COVID-19 pandemic and the rise of remote working, or streaming while more people stay at home.

Check Point describes a brand phishing attack as one in which criminals imitate the official website of a well-known brand by using a similar domain name or URL and webpage design to the genuine site.  

“The link to the fake website can be sent to targeted individuals by email or text message, a user can be redirected during web browsing, or it may be triggered from a fraudulent mobile application. The fake website often contains a form intended to steal users’ credentials, payment details or other personal information.”

According to the research, 10% of all brand phishing attempts imitated Apple – up 8% from Q4 in 2019 – because criminals are trying to capitalise on brand recognition.

Top phishing brands in Q1 2020 (The top brands are ranked by their overall appearance in brand phishing attempts):
1.      Apple (related to 10% of all brand phishing attempts globally)
2.      Netflix (9%)
3.      Yahoo (6%)
4.      WhatsApp (6%)
5.      PayPal (5%)
6.      Chase (5%)
7.      Facebook (3%)
8.      Microsoft (3%)
9.      eBay (3%)
10.   Amazon (1%)

According to Check Point’s director of threat intelligence and research, Maya Horowitz, criminals are targeting people across email, web, and mobile applications. These applications look like they are from well-recognised brands, or they tap into behavioural changes as a result of the global pandemic.

“Phishing will continue to be a growing threat in the coming months, especially as criminals continue to exploit the fears and needs of people using essential services from their homes. As always, we encourage users to be vigilant and cautious when divulging personal data.”

Check Point also published lists of the most imitated companies across web, mobile, and email. 

Web (59% of all phishing attacks during Q1)

  • Apple
  • Netflix
  • PayPal
  • eBay

Mobile (23% of all phishing attacks during Q1)

  • Netflix
  • Apple
  • WhatsApp
  • Chase

Email (18% of all phishing attacks during Q1)

  • Yahoo
  • Microsoft
  • Outlook
  • Amazon.
Story image
Microsoft is most imitated brand for phishing attacks in Q3
Popular phishing tactics using the Microsoft brand used email campaigns to steal credentials of Microsoft accounts, luring victims to click on malicious links which redirect them to a fraudulent Microsoft login page. More
Story image
New project development inhibited by cybersecurity, Kaspersky research states
"There are still some practical steps that can be taken to make sure that an emerging technology or a product reaches its launch. Cybersecurity doesn’t have to be another corporate barrier, but it should be on an integral part of the project all long."More
Story image
Interview: How cyber hygiene supports security culture - ThreatQuotient
We spoke with ThreatQuotient’s APJC regional director Anthony Stitt to dig deeper into cyber hygiene, security culture, threat intelligence, and the tools that support them.More
Story image
Cybersecurity market continues meteoric ascent
With the increase in cyberattacks, organisations are continuing to spend more money on security. However, without a focused cybersecurity strategy, they often spend it in the wrong areas.More
Story image
COVID-related email subjects biggest threat in phishing scams
Coronavirus-related email subjects remain the biggest threat in phishing scams, a new study has found.More
Story image
Palo Alto Networks extends cloud native security platform with new modules
Palo Alto Networks has announced the availability of Prisma Cloud 2.0, including four new cloud security modules, thus extending its Cloud Native Security Platform (CNSP). More