IT security firm Check Point Software has published its Brand Phishing Report for the second quarter of 2025. Microsoft remains in first place, accounting for 25 percent of all phishing attacks impersonating a company. Spotify makes an unexpected return, ranking fourth with six percent.
Phishing continues to be the dominant tool in cybercriminals’ arsenals. In Q2 2025, attackers stepped up efforts to impersonate some of the world’s most trusted brands—services millions of people rely on daily. From major technology companies to streaming services, no brand is immune to being forged and used as bait.
One of the most notable campaigns of the quarter involved fraudsters posing as the music streaming service Spotify. Using a fake website, attackers tricked users into submitting their login credentials. The counterfeit site mimicked Spotify’s official website, prompting victims to enter usernames and passwords, which were then passed on to a fraudulent payment page designed to steal credit card details as well.
This campaign marks Spotify’s first appearance on the top list since Q4 2019, highlighting how streaming platforms are being exploited as aggressively as traditional tech services.
“Beyond the increased targeting of streaming platforms like Spotify, the technology sector remains the primary focus of phishing campaigns,” says Oskar Rodin, security expert at Check Point Software. Platforms such as Microsoft 365, Gmail and iCloud play central roles in our digital lives, and cybercriminals view these brands as gateways to sensitive information.
Top 10 most impersonated brands in Q2 2025:
- Microsoft – 25%
- Google – 11%
- Apple – 9%
- Spotify – 6%
- Adobe – 4%
- LinkedIn – 3%
- Amazon – 2%
- Booking – 2%
- WhatsApp – 2%
Read the full report on the Check Point blog: https://blog.checkpoint.com/re…