IT security company Check Point Software has released its Brand Phishing Ranking for the last quarter of 2024, listing the brands most exploited by cybercriminals. The primary aim of these phishing campaigns is typically to steal personal data or payment details from individuals and businesses.
Attackers continually refine their phishing techniques to appear as legitimate organizations and deceive victims. Microsoft remains the most impersonated brand, accounting for nearly one third of all phishing attempts in Q4 2024. Both Apple and Google each represented about 12 percent of observed phishing, while LinkedIn followed closely at 11 percent.
Increase in clothing-brand phishing campaigns during the holiday season
During the year-end holiday period, Check Point Software’s security researchers observed a significant rise in phishing campaigns impersonating well-known clothing brands. These schemes often relied on fraudulent domains designed to look official and fake promotional offers for products. Victims believed they were purchasing from familiar retailers such as Adidas or Nike, but the attackers captured payment information and emptied accounts.
“Cybercriminals are becoming increasingly adept at mimicking established brands,” says Fredrik Sandström, security expert at Check Point Software. “New tools, including AI, lower the barrier to commit phishing, enabling more people to carry out these attacks successfully. Users must improve their ability to spot phishing attempts and keep their security systems updated to avoid falling victim.”
For further details, consult Check Point Software’s blog: https://blog.checkpoint.com/research/exploring-q4-2024-brand-phishing-trends-microsoft-remains-the-top-target-as-linkedin-makes-a-comeback/