DHL Archives – Gridinsoft Blog Welcome to the Gridinsoft Blog, where we share posts about security solutions to keep you, your family and business safe. Mon, 06 Dec 2021 08:07:19 +0000 en-US hourly 1 https://wordpress.org/?v=92884 200474804 Hackers majorly use Microsoft and DHL brands in phishing attacks https://gridinsoft.com/blogs/hackers-majorly-use-microsoft-and-dhl-brands-in-phishing-attacks/ https://gridinsoft.com/blogs/hackers-majorly-use-microsoft-and-dhl-brands-in-phishing-attacks/#respond Mon, 18 Jan 2021 16:41:55 +0000 https://blog.gridinsoft.com/?p=4999 Hackers majorly use the Microsoft and DHL brands in phishing attacks. In Q4 2020, cybercriminals used more brands from the tech industry, followed by shipping and retail businesses. Information security researchers from the Check Point Software team said that phishers love the Microsoft brand. 43% of all attempts at phishing attacks were associated with it… Continue reading Hackers majorly use Microsoft and DHL brands in phishing attacks

The post Hackers majorly use Microsoft and DHL brands in phishing attacks appeared first on Gridinsoft Blog.

]]>
Hackers majorly use the Microsoft and DHL brands in phishing attacks. In Q4 2020, cybercriminals used more brands from the tech industry, followed by shipping and retail businesses.

Information security researchers from the Check Point Software team said that phishers love the Microsoft brand. 43% of all attempts at phishing attacks were associated with it – attackers tried to influence people working remotely during the second wave of the pandemic.

Top brands most frequently used in phishing attacks:

  1. Microsoft (43% of all phishing attacks attempts with the use of brand names worldwide)
  2. DHL (18%)
  3. LinkedIn (6%)
  4. Amazon (5%)
  5. Rakuten (4%)
  6. IKEA (3%)
  7. Google (2%)
  8. Paypal (2%)
  9. Chase (2%)
  10. Yahoo (1%)

How a brand-based phishing attack works

In a phishing attack that is using brands, criminals try to imitate the official website of a well-known company using a domain name, URL and design similar to the original website.

Victims can receive a link to the fake page via email or SMS. They can also be redirected to a phishing site while browsing the web or from a malicious mobile application. Fake sites often contain a form designed to steal credentials, billing information or other personal information.

In Q4 2020, cybercriminals stepped up their attempts to steal people’s personal data, posing as well-known brands. Our data shows how they change their attack tactics to achieve maximum results. As always, we urge users to be extremely careful when entering sensitive data into business applications. Think twice before opening email attachments and following links. Be especially careful if you see emails that claim to be from Microsoft or Google. With a high degree of probability, these letters may also be from cybercriminals.says Check Point Software Technologies representative.

Examples of phishing attacks using brands:

A phishing email allegedly from DHL – an example of password theft

In November, Check Point researchers noticed a malicious phishing email that used the DHL trademark. Then the attackers tried to steal user passwords. The email that came from a fake email address Parcel.docs@dhl.com contained the following text:

“RE: Your DHL Parcel (available to receive) – []”. Cybercriminals tried to trick the victim into clicking a malicious link that redirected to a fake login page. There, the user had to enter his password, which would then be sent to the attackers’ site.

Microsoft and DHL in phishing attacks

Phishing email allegedly from Microsoft – an example of credential theft.

In December, Check Point researchers discovered a malicious phishing email that attempted to steal user credentials from a Microsoft Office 365 account. In the subject of the email was indicated: “Daily Document Delivery # – “, and the content that mimicked eFax. After the user clicked on the link, he was lead to another document that redirected the user to a fake Microsoft login page.

Microsoft and DHL in phishing attacks

Let me remind you that I talked about cybercriminals that started using Google services more often in phishing campaigns.

The post Hackers majorly use Microsoft and DHL brands in phishing attacks appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/hackers-majorly-use-microsoft-and-dhl-brands-in-phishing-attacks/feed/ 0 4999
Operators of phishing campaigns increased number of emails allegedly from delivery services https://gridinsoft.com/blogs/operators-of-phishing-campaigns-increased-number-of-emails-allegedly-from-delivery-services/ https://gridinsoft.com/blogs/operators-of-phishing-campaigns-increased-number-of-emails-allegedly-from-delivery-services/#respond Wed, 02 Dec 2020 22:00:46 +0000 https://blog.gridinsoft.com/?p=4790 Check Point Research reports that in November, the number of phishing emails written on behalf of delivery services increased by 440% compared to October. The sharpest growth was noted in Europe, with North America and the Asia-Pacific region in second and third places respectively in the number of phishing campaigns. Most often (in 56% of… Continue reading Operators of phishing campaigns increased number of emails allegedly from delivery services

The post Operators of phishing campaigns increased number of emails allegedly from delivery services appeared first on Gridinsoft Blog.

]]>
Check Point Research reports that in November, the number of phishing emails written on behalf of delivery services increased by 440% compared to October.

The sharpest growth was noted in Europe, with North America and the Asia-Pacific region in second and third places respectively in the number of phishing campaigns. Most often (in 56% of cases) fraudsters sent letters on behalf of DHL. In second place is Amazon (37%), in third – FedEx (7%).

In Europe, the number of phishing emails in November increased by 401% compared to October. 77% of them were masked as various notifications from Amazon. In the US, scammers sent 427% more phishing messages than in October, and 65% of them were written on behalf of Amazon. And in the Asia-Pacific region, phishing attacks on behalf of delivery services grew by 185%, with almost 65% of emails using the DHL brand.Check Point experts say.

Back in early November, the US Centers for Disease Control and Prevention warned of the dangers of shopping malls during the holidays and recommended shopping online. As a result, the volume of online shopping in the country continues to break all records. In the first ten days of November, the holiday season, Americans spent $21.7 billion on online purchases, a 21% increase over last year. Shoppers will spend $38 billion over the 2020 Thanksgiving holiday weekend, nearly doubling the amount that was spent during the same period in 2019, according to DC360.

However, it’s not just stores that are preparing for the online shopping boom – the attackers are also mobilizing forces to earn on the holiday hype. Number of phishing attacks has doubled recently.

Now, in addition to fake discount offers and links to store sites, they are increasingly sending phishing emails on behalf of delivery services.

A well-thought-out scheme engages the entire online shopping system, from discount offers like Black Friday and Cyber Monday to order delivery. Its main goal is to trick people into disclosing their account and bank card details so that they can use them to steal money.Check Point researchers warn.

Unlike ordinary phishing emails, with the help of which scammers try to get personal data, information to enter the personal account of an online bank or card data, emails on behalf of delivery services contain various fake messages about problems or offers to track the package.

To solve a problem or in order to use the service, user must provide personal data or bank card details. It is no coincidence that scammers started sending out such letters in November, experts say, since this month many buyers of online stores are waiting for their purchases and more often pay attention to messages from delivery services. In addition, many users are already aware of the old methods of fraudulent sales, and traditional “bargains” no longer contribute to income of criminals.

Check Point Expert Tips for Safe Shopping:

  • For different sites, use unique non-duplicate logins and passwords, go to the site not using a link from a letter that may turn out to be phishing, but open it through a search engine.
  • Particular attention should be paid to the language and errors in letters and domain names: for example, attackers can use the .co extension instead of .com or make typos in the letter itself.

Let me remind you also that cybercriminals started using Google services more often in phishing campaigns.

The post Operators of phishing campaigns increased number of emails allegedly from delivery services appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/operators-of-phishing-campaigns-increased-number-of-emails-allegedly-from-delivery-services/feed/ 0 4790