With 2020 behind us, it is now possible to take a look back and analyze the different cybercrime trends that took place in order to be more prepared in 2021. One of the most popular form of cyberattacks is phishing, and as it usually comes in the form of emails from well-known brands, they can often be deceiving.
Let’s take a look at the top 10 phishing brands of 2020, according to Check Point’s research, so that we can be wary when we get an email from them:
Other notable brands in phishing attempts in 2020 included WhatsApp, Facebook, and Netflix.
In November 2020, researchers from Check Point noticed a malicious phishing email that used DHL’s branding, and was trying to steal users’ passwords. The email was sent from the spoofed email address [email protected] and had the subject “RE: Your DHL parcel (Available for pick up) – [<recipient email>]” with the user’s email address listed. It aimed to lure the recipient to click on a malicious link that redirects the recipient to a fraudulent login page that encourages them to insert their password and then be sent to the fake site: (https://ipostagepay[.]ru/[.]mm0/).
Around mid-year, Check Point observed a malicious phishing email aiming to steal Microsoft Office 365 account users’ credentials. The email below contains the subject “Doc(s) Daily delivery #- <ID Number>” and the content impersonated eFax service.
After the users click on the link, they are taken to another document (see below)
It then redirects them to a fraudulent Microsoft login page (see below).