Brand impersonation

What is brand impersonation?

Brand impersonation is a type of email phishing attack where cybercriminals pose as a trusted brand to dupe victims and steal their data.
Also known as brand spoofing, this cyberattack uses an email that looks like it’s from a recognizable brand to trick recipients into clicking a link or downloading an attachment containing 
malware.
Some of the 
most impersonated brands include Facebook, Microsoft, Google, and PayPal.

Brand impersonation - spoofing attempt

Examples of brand impersonation

With 11,041 unique phishing URLs, Microsoft is the top target for brand impersonation. The popularity of Microsoft 365 among SMBs and enterprises has made Microsoft a lucrative target for phishers hoping to steal valuable data from Microsoft 365 applications. 

In 2022, financial services brands saw the most impersonation of any industry represented in the report. The financial services industry had a total of eight brands in the top 25. Cloud followed with six brands on the list. The E-commerce/logistics and telco industries each had four brands in the top 25, followed by social media with three.

How to prevent 

For small to midsize businesses (SMBs), and particularly small businesses, the damage of brand impersonation could be unrecoverable.
Employee awareness and training are essential to ensure the best security at the office. 
In addition, we recommend implementing an effective anti-spear phishing software that can automatically detect and block suspicious emails so your employees are never put in a dangerous situation.

About Vade

Vade’s spear phishing prevention technology uses artificial intelligence, including Anomaly Detection and Natural Language Processing, to identify brand impersonation attempts and malicious patterns in spear phishing emails.

Learn more about Vade Anti Spear Phishing >