More people are working from home now than ever before, often times with less security. Chat services and email have become the primary means for communications among organizations, so threat actors attempt to exploit them. Phishing attacks have always been a common attack vector among threat actors and have become more prevalent over the last year. Threat actors continue to use popular brands to launch phishing campaigns in an attempt to steal login credentials. Cybersecurity researchers found that 43% of phishing emails sent over the last three months were attempting to act as if they were Microsoft. Criminals use Microsoft because of its widespread use among corporations. Threat actors hope to gain access to these organizations’ networks. Users will be asked to enter login credentials to verify their identity, when in reality they are being stolen by a threat actor. The second most common imitated company was DHL, followed by other well-known brands like LinkedIn, Amazon, Google, PayPal and Yahoo.
Written by: Nataliia Zdrok, Threat Intelligence Analyst at Binary Defense Russia’s invasion of Ukraine increased