Cyber crooks just won't go away, and it seems some consumers are currently more at risk than others. That's according to a new alert from the security team at Check Point, who say those with Microsoft, Google, Apple and Spotify accounts are 'prime targets' for phishing attacks. Microsoft users need to be the most concerned, with experts saying this brand comes out top for scams. Google is then second with Apple third. It's now 'critical' that those using these popular platforms watch out for phishing attacks where crooks send out messages pretending to be from one of these tech giants.
"Phishing continues to be a powerful tool in the cyber criminal arsenal," Check Point explained.
"In the second quarter of 2025, attackers doubled down on impersonating the world's most trusted brands-those that millions of people rely on every day. From tech giants to streaming services and travel platforms, no digital brand is immune to being spoofed."
One recent attack-spotted by Check Point-targeted Spotify users with an email claiming their account details needed updating. Once the link in the message was clicked, users were lured into a credential-harvesting trap via a website that looked just like Spotify's official sign-in page. If fooled, details such as credit card number, address and telephone numbers could all be stolen.
HERE ARE THE BRANDS USED MOST BY SCAMMERS
Microsoft - 25%
Google - 11%
Apple - 9%
Spotify - 6%
Adobe - 4%
LinkedIn - 3%
Amazon - 2%
Booking - 2%
WhatsApp - 2%
Facebook - 2%
"Cybercriminals continue to exploit the trust users place in well-known brands," said Omer Dembinsky, Data Research Manager at Check Point Software.
"The resurgence of Spotify and the surge in travel-related scams, especially in light of the upcoming summer and school holiday travel, show how phishing attacks are adapting to user behaviour and seasonal trends.
"Awareness, education, and security controls remain critical to reducing the risk of compromise."
Check Point has now issued some advice on how to stay safe. This includes enabling Multi-Factor Authentication (MFA) on all accounts to stop unauthorised access. MFA only lets you log in once a code has been sent to a second device you own.
It's also vital to always check website URLs and email senders carefully before clicking or submitting information.
Phising attacks aren't going to stop so stay alert and always think before you click.
You may also like
Britain makes a profit on the 'aid' it gives to India for first time
Calcutta HC asks Odisha govt to file affidavit on alleged illegal detention of Bengali migrants
Bengaluru riot case: NIA court convicts three; sentenced to seven years in jail
Mamata Banerjee inaugurates 134th Durand Cup, calls Bengal the 'spiritual home of Indian football'
Puri horror: Minor victim still in critical condition
