Security News > 2022 > January > DHL dethrones Microsoft as most imitated brand in phishing attacks
DHL was the most imitated brand in phishing campaigns throughout Q4 2021, pushing Microsoft to second place, and Google to fourth.
Phishing campaigns impersonating the brand have good chances of reaching people who are waiting for a DHL package to arrive during the holiday season.
In an example presented on the Check Point report, a phishing campaign used spoofed DHL customer support email addresses to send the "Shipment notification" message, as shown below.
In this case, the email requests the user to verify their identity, which takes place on a phishing page that is made to look exactly like the real DHL site.
Finally, there's an ominous PayPal phishing specimen that requests the target to "Confirm their account information" to lift a status of temporary suspension.
Phishing relies on creating a sense of urgency, so whenever you're dealing with an email that causes you distress, consider the possibility of it being an attempt to trick you into giving away sensitive information.
News URL
Related news
- Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
- Microsoft Teams phishing attack alerts coming to everyone next month (source)
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Criminal IP: Bringing Real-Time Phishing Detection to Microsoft Outlook (source)
- Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
- Microsoft fixes under-attack privilege-escalation holes in Hyper-V (source)
- New 'Sneaky 2FA' Phishing Kit Targets Microsoft 365 Accounts with 2FA Code Bypass (source)
- Week in review: 48k Fortinet firewalls open to attack, attackers “vishing” orgs via Microsoft Teams (source)
- How to Prevent Phishing Attacks with Multi-Factor Authentication (source)
- CISA tags Microsoft .NET and Apache OFBiz bugs as exploited in attacks (source)