Connect with us

Cyber Security

Check Point Research Reveals Q2 2024 Brand Phishing Trends

Published

on

Check Point Research (CPR), the Threat Intelligence arm of Check Point Software Technologies has released its latest Brand Phishing Ranking for Q2 2024. The ranking highlights the brands most frequently imitated by cybercriminals in their attempts to deceive individuals and steal personal information or payment credentials. For the second quarter this year, Microsoft remained the most imitated brand in phishing attacks, accounting for more than half of all attempts with 57%. Apple jumped to second spot with 10%, moving up from fourth position in the first quarter of 2024, and LinkedIn kept its previous third place ranking with 7% of such attempts. Meanwhile, there were new entries to the list with Adidas, WhatsApp, and Instagram moving into the top 10 for the first time since 2022.

The Technology sector remained the most impersonated industry in brand phishing, followed by Social Networks and Banking. Technology companies often hold sensitive information, including personal data, financial information, and access to other accounts, which makes them valuable targets for attackers. Companies such as Microsoft, Google and Amazon, who all appeared on the list, deliver essential and frequently used services such as email, cloud storage, and online shopping. That means people are more likely to respond to messages that appear to be from these critical service providers.

Omer Dembinsky, Data Group Manager at Check Point Software, emphasized the persistent threat of phishing attacks, stating, “Phishing attacks remain one of the most pervasive cyber threats and are often the entry point for much larger scale campaigns a supply chain. To protect against phishing attacks, users should always verify the sender’s email address, avoid clicking on unsolicited links, and enable multi-factor authentication (MFA) on their accounts. Additionally, using security software and keeping it updated can help detect and block phishing attempts.”

Top Phishing brands
Below are the top 10 brands ranked by their overall appearance in brand phishing events during Q2 2024:

Microsoft (57%)
Apple (10%)
LinkedIn (7%)
Google (6%)
Facebook (1.8%)
Amazon (1.6%)
DHL (0.9%)
Adidas (0.8%)
WhatsApp (0.8%)
Instagram (0.7%)

Adidas Phishing Campaigns
Last quarter, Check Point Research observed several phishing campaigns targeting users by impersonating Adidas brand websites. For instance, adidasyeezys[.]cz (Figure 1) and adidasyeezys[.]it (Figure 2) are designed to deceive victims into believing they are authentic Adidas Yeezy sites, closely mimicking the appearance of the legitimate Adidas site at https://news.adidas.com/yeezy. These fraudulent sites aim to lure users into entering their credentials and personal information, exploiting their resemblance to the original site to successfully steal information. Similarly, adidas-ozweego[.]fr (Figure 3) and adidascampus[.]co[.]at (Figure 4) mimic the official Adidas platform.

Furthermore, adidasoriginalss[.]fr currently appears inactive for phishing and instead hosts advertisements.

Instagram Phishing Campaigns
In the last quarter, researchers observed numerous campaigns utilizing the Instagram brand to perpetrate online scams. As a result, Instagram has risen to the 10th position on the list of top brands impacted by phishing, marking its first appearance there since 2022.

In recent months, CPR identified phishing campaigns impersonating Instagram to deceive users into divulging their login credentials. One instance involves a phishing page hosted at instagram-nine-flame].[vercel].[app/login (figure 1), which mimics Instagram’s login interface. This page, hosted on Vercel, a platform for creating React applications, prompts users to enter their usernames and passwords.

Another observed campaign utilized the domain instagram-verify-account].[tk (figure 2). Although currently inactive, it previously displayed a message designed to trick users into entering personal information under the guise of verifying their Instagram accounts. Such tactics aim to exploit trust and deceive users into compromising their credentials.

Cyber Security

World’s Largest Cybersecurity Startup Hub GISEC North Star Debuts in 2025

Published

on

GISEC Global is thrilled to announce the launch of GISEC North Star, an expanded startup zone designed to connect cybersecurity innovators, investors, and industry leaders on an unprecedented global scale. In partnership with Expand North Star, the world-renowned startup and investor networking event, GISEC North Star aims to elevate the cybersecurity startup ecosystem by featuring 250 leading-edge cybersecurity startups and 150 investors. The 14th edition of GISEC Global anticipates over 25,000 visitors and participants from 160 countries.

The event will take place during GISEC GLOBAL 2025 at the Dubai World Trade Centre from 6-8 May 2025, introducing unparalleled opportunities for networking, collaboration, and investment. As cybersecurity threats escalate globally, GISEC North Star is designed to foster an ecosystem of innovation and resilience by connecting global minds in cybersecurity technology, venture capital, and enterprise solutions.

As an anchor of GISEC Global, GISEC North Star will serve as a premier platform where disruptive startups can showcase their innovations, connect with leading global investors, and engage with key industry leaders across various sectors. The event will feature cutting-edge showcases, live demos, and panel discussions with top minds in cybersecurity technology and business.

“We are thrilled to expand GISEC’s role in the global cybersecurity ecosystem through our partnership with Expand North Star. GISEC North Star is committed to bringing together the brightest minds in cybersecurity, empowering startups with unparalleled access to the resources, networks, and investments they need to thrive in today’s fast-evolving digital landscape,” said Nawaz Ali, Commercial Director at GISEC Global.

GISEC North Star’s expansive setup is designed to attract the best cybersecurity talent from across the globe, uniting startups, investors, and visitors to collaboratively tackle the sector’s most pressing challenges. With participants from over 160 countries, the event will foster diverse and impactful exchanges that shape the future of global cybersecurity.

Designed to promote collaboration and growth, GISEC North Star is set to showcase breakthrough innovations that address critical challenges in cybersecurity, ranging from AI-driven threat detection to secure data management solutions. Investors will have an unprecedented opportunity to connect with and support promising startups driving advancements that safeguard the future.

Continue Reading

Cyber Security

Check Point Software to Emphasise its Prevention-First Approach to Cyber Security

Published

on

Ram Narayanan, the Country Manager at Check Point Software Technologies for the Middle East, says the company will introduce Check Point Infinity XDR/XPR in the UAE (more…)

Continue Reading

Cyber Security

Tenable Urges Organisations to Reimagine Cybersecurity at GITEX 2024

Published

on

Tenable will exhibit at GITEX Global at the Dubai International Convention and Exhibition Centre from October 14 – 18, 2024. At the event, Tenable will showcase its AI-powered exposure management solutions that illuminate the attack paths that exist within organizations’ infrastructure, from IT infrastructure to the cloud, to Operational Technology (OT) and everywhere in between. In addition, Tenable will launch its 2024 Cloud Risk Report during the show.

Scattered products, siloed views and disjointed teams are struggling to hold back threats across a fragmented attack surface. The cyber risk challenge won’t be won with security strategies and solutions that stand divided. Enterprises need one view of risk across all assets, to connect the dots between the damaging risk relationships that span solution silos and bring together disparate teams with the intelligence they need to strengthen defenses and protect against attacks as one.

Tenable exists to expose and close the resulting priority security gaps that put businesses at risk. Our industry-leading exposure management platform radically unifies security visibility, insight and action across the attack surface, equipping modern organizations to protect against attacks, from IT infrastructure to the cloud to OT and everywhere in between.

“Rapid advancements in technology and digital transformation make it challenging for organizations to stay one step ahead of attackers,” said Maher Jadallah, Senior Director Middle East & North Africa, Tenable. “Security teams often have to juggle multiple clouds and identities across a converged IoT, OT and IT landscape. At GITEX 2024, we will show organizations how they can expose and close the priority security gaps that put their businesses at risk. Our team will be on hand to help visitors reimagine cybersecurity as a global force for eradicating their exposure.”

Continue Reading
Advertisement

Follow Us

Trending

Copyright © 2021 Security Review Magazine. Rysha Media LLC. All Rights Reserved.