Guardio’s Brand Phishing Report is here again, highlighting the most impersonated brands in phishing scams for Q2 2024. This quarter, Meta has taken the top spot, followed closely by Microsoft and Steam. The report also highlights the most targeted states and the increase in certain types of scams, giving us a clearer picture of the changing cyber threat landscape.
Phishing scams are popping up everywhere these days, and scammers are getting craftier by pretending to be well-known brands. This quarter, from April to June 2024, Meta was the hottest target, with 8.17% of all scam attempts using their name. Countless fake emails and texts claimed to be from Meta, attempting to steal personal info or hack into systems.
This growing trend shows how crucial it is to stay vigilant and protect your personal information.
Key Takeaways
- Meta Tops Phishing Charts: In Q2 2024, Meta was the most impersonated brand in phishing attacks, accounting for 8.17% of all attempts.
- Microsoft and Steam Also Targeted: Following Meta, Microsoft and Steam were frequently mimicked by scammers, highlighting a trend of targeting popular tech brands.
- Rise in Toll Fee Scam Texts: There was a significant 588.4% increase in toll fee scam texts in the US between Q1 and Q2 2024, indicating a surge in phishing via SMS.
- Stay Cautious: Always double-check messages or emails claiming to be from these brands, and think twice before clicking on any links.
Boogie down the secure path
Top imitated brands in Q2 2024
1. Meta (8.1%)
2. Microsoft (7.8%)
3. Steam (6.7%)
4. USPS (6.3%)
5. AT&T (3.9%)
6. Roblox (3.2%)
7. Telegram (2.2%)
8. OneDrive (2.2%)
9. DHL (1.9%)
10. Uniswap (1.9%)
What you need to know about the top 4 scams:
1. Meta (8.1%) Meta remains a top target for phishing scams due to its vast user base. Scammers often use fake login pages or notifications to steal credentials and personal information. These scams can lead to unauthorized access to personal data and social engineering attacks.
2. Microsoft (7.8%) Microsoft phishing scams frequently involve fake security alerts and Office 365 login pages. These scams aim to harvest login credentials, giving attackers access to emails, documents, and other sensitive information. The sophisticated nature of these attacks often makes them difficult to detect.
3. Steam (6.7%) Steam users are targeted through fake giveaways and phishing links via chat messages. Scammers exploit the platform's popularity among gamers to steal account details and in-game items. These scams can result in significant financial losses and compromised personal data.
4. USPS (6.3%) USPS phishing scams typically involve fake delivery notifications and tracking links. Victims are tricked into providing personal information or paying bogus fees, which can lead to identity theft and financial fraud.
Rising scams in Q2 2024
Besides the top imitated brands, a few new scams are making waves this quarter. Check out these rising scams:
Toll fees scam texts:
The security reports show a staggering 588.4% increase in toll fee scam texts in the US between Q1 and Q2 this year. Scammers are sending fake SMS messages claiming to be from toll services, tricking victims into paying bogus fees or providing personal information. Read more.
MasquerAds:
Using the tactic of "MasquerAds," scammers exploit Google Ads and its legitimate reputation to lead people to sites mimicking the original, like Calend.ly. These fake ads imitate real ones and direct users to phishing sites designed to steal personal information or install malware when users click to install or download. Read more.
Some sponsored Google search results can lead to dangerous sites. This fake site asks you to download Calendly, but the file actually contains malware. @Calendly #Phishoftheweek pic.twitter.com/dznXMHrPBv
— Guardio (@GuardioSecurity) May 30, 2024
Unclaimed baggage/SHEIN/Temu packages:
Scammers are exploiting the popularity of online shopping with fake notifications about unclaimed baggage or SHEIN packages, luring victims into providing personal information or making bogus payments. Read more
Watch out for fake Facebook pages posing as airports, offering unclaimed baggage for sale. These pages lead to malicious sites, which we're continuously monitoring and blocking. #ScamAlert @ATLairport pic.twitter.com/9IoFj9LYNj
— Guardio (@GuardioSecurity) April 30, 2024
Most targeted states for scams in Q2 2024
These states saw the highest number of scam attempts, with many residents reporting phishing incidents. The increased activity in these areas highlights the importance of staying alert and protecting personal information.
- California
- Texas
- Florida
- New York
- Illinois
Stay safe online
Phishing scams are becoming more sophisticated, with Q2 2024 showing a significant rise in brand impersonations. The top targets include Meta, Microsoft, and Steam, and being aware of which brands are frequently faked can help you stay vigilant. Always double-check any messages or emails you get from these brands and think twice before clicking on links.
Conclusion
Guardio’s Q2 2024 Brand Phishing Report highlights the evolving tactics of cybercriminals, with Meta, Microsoft, and Steam emerging as the most impersonated brands this quarter. The surge in phishing scams targeting major platforms highlights the importance of staying informed and cautious online.
From fake login pages and bogus delivery notifications to increasingly sophisticated tactics like "MasquerAds" and toll fee scams, the report paints a clear picture of the rising threats. The data also reveals targeted states, such as California and Texas, which have seen a significant spike in scam attempts.
As phishing attempts grow more cunning, protecting your personal information is more critical than ever. Regularly verify the authenticity of communications, avoid clicking suspicious links, and use robust security tools to protect your data. By staying vigilant, you can outsmart scammers and navigate the digital landscape securely.
Related articles:
- Avoid These 6 Phishing Attacks Before They Happen to You
- How to Protect Yourself Against Phishing Scams
- Phishing Explained: Everything You Need to Know About Phishing Scams
- Targeted Phishing: Spear Phishing Protection
- Understanding Infostealer Malware
