At the beginning of May we analyzed how phishing and scam attempts changed immediately after the surge in smart working and the simultaneous increase in the use of video call apps.
However, the easing of global restriction measures and the return to (almost) normalcy have once again changed the cards on the table, at least as regards the victims preferred by the attackers. In the first quarter of 2020, the users most affected by this type of attack were Apple, Netflix and Yahoo. However, this ranking was turned upside down in the second quarter and security researchers from Check Point Research.
At the first position of the most coveted brands in phishing attempts on the web (61% of the total) we find Google with 13% of the attacks; second position for Amazon, also with 13% of total attempts, while the bottom step of the podium is occupied by WhatsApp on an equal footing with Facebook (9%).
Apple has dropped six positions, which after the record of the last quarter is now in seventh position in the "general classification". Despite the decrease in the number of attempts against Apple users – Check Point Research points out – at the end of June a fraudulent website was identified that was trying to imitate the iCloud login page.
In late June, we saw a fraudulent website that was trying to imitate Apple's iCloud login page for cloud services. The purpose of this website is to attempt to steal iCloud login credentials and is listed under the "account – icloud" domain. com ". The domain was activated for the first time at the end of June 2020 and registered under the IP – 188.8.131.52, based in Russia.
EMAIL ATTACKS (24%)
WEB ATTACKS (61%)
MOBILE ATTACKS (15%)