A typical phishing email impersonates a well-known contact or trusted company to induce the recipient to click on an embedded link, with the ultimate goal of credential or credit card harvesting. During Q1 2019, FireEye saw these type of attacks increase by 17% over the prior quarter.
The top spoofed brands across these activities included Microsoft, with almost 30% of all detections – followed by OneDrive, Apple, PayPal and Amazon, each within the 6-7% range.