Cybercriminals Focus Attacks on Trusted Brands, Leveraging AI for Deceptive Phishing
Cybercriminals are increasingly concentrating their phishing efforts on a small number of highly trusted brands, particularly Microsoft, exploiting user familiarity and a sense of security. According to recent data from Check Point Research, a staggering 40% of all phishing attempts in the third quarter targeted Microsoft, demonstrating a clear strategy to leverage platforms users interact with daily and inherently trust.
This shift in tactics also saw the return of PayPal and DHL to the global top 10 most impersonated brands, after a period of absence. PayPal currently accounts for 3% of attacks, while DHL represents 2%, signaling a broadening focus on financial and logistics services – sectors where urgency and the need for speedy action are easily exploited.
“AI-generated phishing is hyper-personalized and deeply deceptive,” warns Omer Dembinsky, Director of Data Research at Check Point Software. “The fact that 40% of attempts impersonate Microsoft,and that brands like PayPal and DHL are resurfacing,demonstrates how attackers have redoubled their efforts in the services everyday tasks that users trust most.”
Researchers at Check Point have uncovered sophisticated scam websites meticulously designed to mimic legitimate platforms. Such as, the domain dhl-login-check[.]org perfectly replicated the official DHL login page, successfully collecting credentials, email addresses, phone numbers, and physical addresses from unsuspecting users under the guise of routine package tracking. Similarly, a fraudulent site at paypal-me[.]icu lured victims with promises of fake rewards, harvesting passwords, credentials, and credit card details. The combination of well-known brands with emotional triggers like urgency or the allure of rewards effectively blurs the line between legitimate and fraudulent experiences.
Beyond Microsoft, the top ten most impersonated brands for the third quarter include Spotify (4%), Amazon (3%), Adobe (3%), Booking.com (2%), and LinkedIn (2%). The technology sector remains the most targeted, followed closely by social networks and retail – all sectors handling important volumes of sensitive user data.
With the peak holiday shopping season approaching, experts predict a surge in scams targeting travel and logistics services, capitalizing on increased online traffic and the time pressure associated with Christmas shopping.
Addressing this escalating threat requires a proactive, multi-layered approach. Check Point Research emphasizes the need for organizations to update their security protocols to counter the evolving sophistication of threats powered by generative AI. This includes implementing AI-based security technology,strengthening authentication methods,and providing ongoing user training.
Check Point’s analysis is powered by ThreatCloud, a global network that monitors cyberattacks in real-time, enabling the identification of emerging patterns and proactive defense updates.
The key takeaway is clear: in a landscape where 40% of attacks focus on a single brand, unquestioning trust in even the most familiar platforms represents a significant vulnerability demanding constant vigilance and continuous digital education.
Author: Adolfo Manaure
Enthusiastic follower of technology and innovations that change the world. editorial Director and COO at The HAP Group.
