Over 100 Brands Were Impersonated in This Massive Phishing Campaign

Phishing can be dangerous because of the fact that this is the sort of thing that could potentially end up making you lose access to your online accounts. It was recently discovered that a widespread phishing campaign has been running since June of 2022 which has impersonated over a hundred brands with all things having been considered and taken into account.

These brands are some of the most popular in the world, and they include the likes of Casio, Adidas, Nike, Columbia and Guess. As can clearly be seen, these brands are almost entirely apparel and clothing brands along with footwear brands, and phishing campaigns like this can really make it harder for these companies to maintain their reputation than might have been the case otherwise.

With all of that having been said and now out of the way, it is important to note that this campaign ended up utilizing upwards of 6,000 sites across 3,000 domains, as per Bolster study. While this also includes inactive sites and domains, the phishing campaign still has the potential to cause enormous harm if swift action is not taken to mitigate this as soon as possible.

Most sites that are involved in this phishing campaign include the name of the brand along with a location specific keyword. Many of them are using .com domains which can make them seem more trustworthy to the uninitiated or unwary user, and that just goes to show that one must put more effort into ascertaining the legitimacy of a website before inputting any information into it whatsoever.

This information is coming out of an analysis done by Booster’s threat research team, and it reveals a lot about the state of phishing today. The phishing campaign first began in June of 2022, but in spite of the fact that this is the case, it ramped up significantly in the first two months of 2023. This is when over 300 new sites with fake names were added to the campaign on a monthly basis. Domain aging has also been used by the malicious actors behind these campaigns for the purposes of covering up their tracks.

Read next: New Study Reveals Cybercriminals' Growing Use of Generative AI to Amplify and Enhance Email Attacks
Previous Post Next Post