"Abnormal Security: Microsoft Tops List of Most-Impersonated Brands in Phishing Exploits"
According to a new study by Abnormal Security, which analyzed brand impersonation and credential phishing trends in the first half of 2023, Microsoft was the most commonly abused brand for phishing exploits. Microsoft's name was used in approximately 650,000 phishing attempts blocked by Abnormal Security. According to the company's report, attackers prefer Microsoft due to the ability to move laterally throughout an organization's Microsoft environment. Additionally, Abnormal Security's threat unit observed the growing use of generative Artificial Intelligence (AI) in social engineering attacks. AI tools have made it much easier and faster for cybercriminals to craft convincing phishing emails, spoof websites, and write malicious code. This article continues to discuss the top 10 brands impersonated in phishing attacks, attackers increasingly relying on generative AI, and how credential-focused phishing attacks lead to persistence.