Cybercriminals are increasingly exploiting the names of major tech brands, with Microsoft, Google, and Spotify topping the list of most impersonated companies in phishing attacks during Q2 2025, according to Check Point Research.
Microsoft accounted for 25% of phishing attempts globally between April and June 2025. Google followed with 11%, while Apple came in third at 9%. Spotify made a surprising comeback to the top 10 list—ranking fourth for the first time since Q4 2019—responsible for 6% of phishing activity.
The report revealed that the tech sector remains the most targeted industry, as attackers continue to leverage user trust in software, cloud, and authentication platforms.
Commenting on the trend, Check Point’s Data Research Manager, Omer Dembinsky, said the resurgence of Spotify and the sharp rise in travel-related scams during the holiday season show how phishing is evolving to match user habits.
One major Spotify-themed campaign involved a convincing fake login and payment page designed to harvest user credentials and credit card details. Similarly, over 700 fake Booking.com domains were created in Q2, using names and contact details of real users to boost credibility—a 1000% spike in travel-related phishing activity.
