Microsoft tops the list as the most imitated brand in phishing attacks | Q3 2024

Guardio’s Brand Phishing Report is back, highlighting the top impersonated brands in phishing scams for Q3 2024. This quarter, Microsoft has overtaken Meta to claim the top spot, followed by Steam and Meta. The report also brings attention to the increasing number of election-related scams, the impact of a massive SSN leak, and a sharp rise in cryptocurrency scams.

Top phishing brands in Q3 2024

In Q3 2024, scammers continued leveraging major brand names to trick people into giving up their personal information or breaking into personal accounts. Here are the top 10 most-imitated brands, with Microsoft taking the lead for the first time this year.

1. Microsoft (9.3%)
2. Steam (8.9%)
3. Meta (7.5%)
4. USPS (7%)
5. Google (3.8%)
6. Roblox (3.2%)
7. AT&T (3%)
8. Coinbase (2.9%)
9. Netflix (2%)
10. DHL (2%)

New entrants in the top 10:

This quarter, Coinbase, Netflix, and Google made the list, reflecting the rise in crypto scams and entertainment-related phishing attempts.

Scam spotlight: Let’s dive into the top four most imitated brands

1. Microsoft (9.3%)Microsoft phishing scams frequently involve fake login pages, Office 365 credentials, and fake security alerts. These scams aim to steal login details, providing attackers with access to sensitive information such as emails and documents, potentially leading to identity theft and financial fraud.

2. Steam (8.9%)Steam continues to be a target due to its large user base among gamers. Scammers use fake giveaways or phishing links through chat messages, often tricking users into handing over account credentials or personal information. Once scammers access an account, they can steal in-game items and payment details.

3. Meta (7.5%)Meta remains a popular platform for phishing attacks, with scammers often using fake login notifications to steal personal credentials. Many phishing messages trick users into thinking their account is at risk, which prompts them to click on malicious links and give away login information.

4. USPS (7%)USPS scams often appear as fake delivery notifications, asking for personal details to track a package or pay unexpected fees. Victims are tricked into sharing information that can lead to identity theft or financial loss.

Rising scams in Q3 2024

Election scamsDuring Q3 2024, election-related scams surged by 223.3%, primarily in the form of ‘junk’ SMS messages. Scammers capitalized on the election season by sending messages that looked official, often impersonating political campaigns or donation platforms. These messages urged people to donate quickly or claim free merchandise in exchange for shipping fees, with hidden recurring charges in the fine print.

SSN leak impact

A massive breach in Q3 exposed over 4.2 billion records, including Social Security numbers, names, and phone numbers. This 416.1% rise in leaked records has led to a significant increase in targeted phishing attacks, particularly those aimed at identity theft. With so much personal information now available, scammers are launching highly personalized phishing campaigns. Read more.

Rise in crypto scams (including QR code scams)

Crypto-related scams, particularly those involving QR codes, have spiked. Scammers are increasingly using deepfakes, hijacked YouTube channels, and fake QR codes to direct users to phishing sites or fraudulent crypto wallets. For example, scammers hijacked streams during major events like the Apple event, leading people to fraudulent crypto schemes. Read more.

Stay safe onlineWith phishing scams becoming more sophisticated, brand impersonation is on the rise. The top targets in Q3 2024 include Microsoft, Steam, and Meta. Staying aware of these trends helps individuals stay vigilant, and solutions like Guardio offer protection from phishing, malware, and identity theft.

About GuardioGuardio offers comprehensive online security solutions to individuals and small businesses. With tools to block phishing scams, malware, and more, Guardio keeps your online presence safe and secure across all devices. Trusted by over 1.5 million users, Guardio continues to provide leading-edge protection for the modern internet user.