An updated threat alarm from Kaspersky researchers has revealed a surprising rise in password-stealing attacks. Reportedly, the targets are primarily Google users, Amazon, and Facebook users.
Facebook, Gmail, and Amazon Are Vulnerable to Hackers
The Kaspersky research further stated that the account credentials of Amazon, Facebook, and Gmail are the most sought-after for malicious hackers. Since the mentioned credentials can quickly provide and fulfill the cybercrime triumvirate of data theft, credit card fraud, and malware distribution, they report to pose the highest cybersecurity risk.
The targets primarily aim at Google since they have the “skeleton key” that can unlock malware distribution and credit card fraud by revealing credentials and personal information.
For instance, a professional Gmail user has the most sensitive information in their inbox. Since our email is associated with a list of web services and social media, among others, our inbox is likely to contain numerous passwords. Accessing this password by the hacker can lead to suspected fraud.
40% Surge in Cyber Crimes
The Russian multinational cybersecurity and antivirus provider, Kaspersky, analyzed a total of 25 of the most prominent global brands to shortlist the most cybercriminal-prone applications when it comes to cyber and phishing attacks. According to the provider, the researcher analyzed approximately 26 million attempts to access malicious sites posed as any of these brands to carry out a cyber attack in 2024. This disappointing analysis also showcased a 40% surge in attacks from the same period in 2023.
Google Phishing Attacks Surged by 243%
Google was analyzed as a top phishing target for criminals. According to Kaspersky, most attackers prefer organizations like Google for stealing credentials like passwords and other account information.
The cybersecurity provider stated that an unexpected 243% surge in attacks has been reported in the first six months of 2024. The reports also included that approximately 4 million such attempts were blocked by Kaspersky.
Olga Svistunova, a cybersecurity expert at Kaspersky, said, “This year has seen a significant increase in phishing attempts targeting Google.”
He added, “A criminal who gains access to a Gmail account can potentially access multiple services, making it a prime target.”
Netflix Among the Top Ten Targeted List
On the other hand, the research states that Facebook users have been suspected of 3.7 million phishing attacks this year, which has yet to be published. Amazon followed the Facebook results with a surprising number of phishing suspects, 3 million.
Microsoft, DHL, PayPal, Mastercard, Apple, Netflix, and Instagram ranked among the top ten cyber criminals targeted list.
Fortunately, HSBC, eBay, Airbnb, American Express, and LinkedIn failed to make a space in the top ten, and Kaspersky stated that they were among the highly targeted brands by hackers.
However, it is essential to note that according to Kaspersky, the cybercrime vulnerability of brands has also showcased a surge rather than a decline.
A New “QR Code Phishing” Has Been Outlined
J Stephen Kowski, the field chief technology officer at Slashnext, has revealed QR Code Phishing, a new category of phishing. In a LinkedIn article, the technology expert stated that the QR Code phishing attack depends on “an embedded image-based QR code” that redirects to a malicious site.
- “In a clever twist, attackers have now begun crafting QR codes using Unicode text characters instead of images. This new technique, which we’re calling “Unicode QR Code Phishing,” presents a significant challenge to conventional security measures,” said Kwoski.
Later, he emphasized the evolution of cybercrime. He concluded, “This development underscores a crucial point we’ve long emphasized. Phishing is no longer confined to email.”