The Surprising Top Ten E-mail Phishing Scams of Q4 2019 | Ron Benvenisti

Check Point Research, the Threat Intelligence arm of Check Point® Software Technologies Ltd. (NASDAQ: CHKP), a leading provider of cyber security solutions globally,

has published its new Brand Phishing Report for Q4 2019.  The report highlights the brands which were most frequently imitated by criminals in their attempts to steal individuals’ personal information or payment credentials during Q4, which includes the busiest online shopping periods of the year.

In a brand phishing attack, criminals try to imitate the official website of a well-known brand by using a similar domain name or URL and web-page design to the genuine site.  The link to the fake website can be sent to targeted individuals by email or text message, redirected during web browsing, or triggered from a fraudulent mobile application. The fake website often contains a form intended to steal users’ credentials, payment details or other personal information.

Cybercrime Costs the Global Economy $2.9 Million Every MINUTE.

Facebook is Most Imitated Brand for Phishing Attempts

 Here’s the complete list:

 

  1. Facebook (related to 18% of all brand phishing attempts globally)
  2. Yahoo (10%)
  3. Netflix (5%)
  4. PayPal (5%)
  5. Microsoft (3%)
  6. Spotify (3%)
  7. Apple (2%)
  8. Google (2%)
  9. Chase (2%)
  10. Ray-Ban (2%)

Here’s an additional breakdown by platform (E-mail, Web and Mobile):

Email (27% of all phishing attacks during Q4)

  1. Yahoo
  2. Rbs (Ray-Ban Sunglasses)
  3. Microsoft
  4. DropBox 

Web (48% of all phishing attacks in Q4)

  1. Spotify
  2. Microsoft
  3. PayPal
  4. Facebook

Mobile (25% of all phishing attacks in Q4)

  • Chase Mobile Banking
  • Facebook
  • Apple
  • PayPal

“Cybercriminals are using a variety of attack vectors to trick their intended victims into giving up personal information and login credentials or transferring money.  Although this is often done using spam emails, we have also seen attackers obtain credentials to email accounts, study their victim for weeks and craft a targeted attack against partners and customers to steal money,” said Maya Horowitz, Director, Threat Intelligence & Research, Products at Check Point. “Over the last two years, incidences of this type of attack have spiked with the increased use of cloud-based email, which makes it easier for criminals to disguise themselves as a trusted party. Phishing will continue to be a growing threat in 2020.”

This content, and any other content on TLS, may not be republished or reproduced without prior permission from TLS. Copying or reproducing our content is both against the law and against Halacha. To inquire about using our content, including videos or photos, email us at [email protected].

Stay up to date with our news alerts by following us on Twitter, Instagram and Facebook.

**Click here to join over 20,000 receiving our Whatsapp Status updates!**

**Click here to join the official TLS WhatsApp Community!**

Got a news tip? Email us at [email protected], Text 415-857-2667, or WhatsApp 609-661-8668.