---
title: "Check Point Research Q1 2024 Results- Microsoft, Google, and Linkedin Topped the List; Airbnb is a New Entry | DuoCircle"
description: "Check Point Research Q1 2024 Results- Microsoft, Google, and Linkedin Topped the List; Airbnb is a New Entry."
image: "https://www.duocircle.com/images/og-default.png"
canonical: "https://www.duocircle.com/blog/data-privacy/check-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins/"
---

Quick Answer

Check Point Research's Q1 2024 brand phishing report ranks the ten most-impersonated brands: Microsoft (38%), Google (11%), LinkedIn (11%), Apple (5%), DHL (5%), Amazon (3%), Facebook (2%), Roblox (2%), Wells Fargo (2%), and Airbnb (1%). Airbnb's first-time entry tracks the seasonal travel surge. Two campaign patterns stood out. A DHL campaign sent fake shipping-status emails from message-system-express@shipping.com with the subject 'Important: Latest Information Regarding DHL Shipments,' linking to a clone site that asked for a small payment to release a 'pending' parcel. A Microsoft campaign used multiple subject lines (Message Failure Delivery Notice, Outlook Info Replacement, Annual Leave Compliance Report for 2024, DocuSign invoice) that linked to cloned Outlook login pages. The wider Q1 stats: 28% increase in average attacks per organization quarter-over-quarter, 64% surge in ransomware in Europe and 18% in Africa, 59% of nearly 1,000 published ransomware incidents hit North America, education averaged 2,454 attacks per organization per week, and the communications sector saw a 177% year-over-year ransomware increase tied to 5G and IoT expansion.

Check Point Research Q1 2024 Results- Microsoft, Google, and Linkedin Topped the List; Airbnb is a New Entry

Your browser does not support the audio element.

[ Download episode](https://media.mailhop.org/duocircle/images/2024/04/Check-Point-Research-Q1-2024-Results-Microsoft-Google-And-Linkedin-Topped-The-List-Airbnb-Is-A-New-Entry.mp3) 

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Fdata-privacy%2Fcheck-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Check%20Point%20Research%20Q1%202024%20Results-%20Microsoft%2C%20Google%2C%20and%20Linkedin%20Topped%20the%20List%3B%20Airbnb%20is%20a%20New%20Entry&url=undefined%2Fblog%2Fdata-privacy%2Fcheck-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Fdata-privacy%2Fcheck-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Fdata-privacy%2Fcheck-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins%2F&title=Check%20Point%20Research%20Q1%202024%20Results-%20Microsoft%2C%20Google%2C%20and%20Linkedin%20Topped%20the%20List%3B%20Airbnb%20is%20a%20New%20Entry "Share on Reddit") [ ](mailto:?subject=Check%20Point%20Research%20Q1%202024%20Results-%20Microsoft%2C%20Google%2C%20and%20Linkedin%20Topped%20the%20List%3B%20Airbnb%20is%20a%20New%20Entry&body=Check out this article: undefined%2Fblog%2Fdata-privacy%2Fcheck-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins%2F "Share via Email") 

![Microsoft, Google, and Linkedin](https://media.mailhop.org/duocircle/images/2024/04/spf-record-7732.jpg) 

Check Point Research has released the [latest report](https://go.checkpoint.com/2024-cyber-security-report/) enlisting the **top 10 phishing brands** for Q1 2024\. Microsoft topped the list, with 38% of [phishing attacks](/data-privacy/microsoft-uncovers-banking-aitm-phishing-and-bec-attacks-targeting-financial-giants/) targeted at it, while Google and LinkedIn experienced 11% of attacks each. What’s surprising is Airbnb’s entry with 1% of attacks; this could be due to the **seasonal holiday surge**, specifically among travelers preferring to stay at unique accommodations.

Here’s the list-

1. [Microsoft](https://www.microsoft.com/en-us/) (38%)
2. [Google](https://www.google.com/) (11%)
3. [LinkedIn](https://www.linkedin.com/) (11%)
4. [Apple](https://www.apple.com/) (5%)
5. [DHL](https://www.dhl.com/us-en/home.html) (5%)
6. [Amazon](https://www.amazon.com/) (3%)
7. [Facebook](https://www.facebook.com/) (2%)
8. [Roblox](https://www.roblox.com/) (2%)
9. [Wells Fargo](https://www.wellsfargo.com/) (2%)
10. [Airbnb](https://www.airbnb.com/) (1%)

## The DHL Phishing Email Scam

DHL EXPRESS was targeted when threat actors sent [deceptive emails](https://sg.news.yahoo.com/scammers-exploit-fake-ninja-van-delivery-notices-in-email-phishing-scam-082403587.html?guccounter=1&guce%5Freferrer=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbS8&guce%5Freferrer%5Fsig=AQAAAGUZQ%5FeEBjKjuDAnAuRzWQmzW2ClV9swe7HYxiN8WRLzJpjJrLGC0f8eXZdwE-Lk2pBhlRruS5QFv%5FnPlUbtthppD-Zf2jdOk%5FhX0iRGV9c78DvyR2sZoz1pQTBFlg2TOUEeE-2TN5dsv%5FQD05h5iqFZ1wWL-TCIwDDVnrw%5F5kv8) that looked like they were coming officially from the company. Bad actors sent emails from [message-system-express@shipping.com](mailto:message-system-express@shipping.com), **requesting urgent action** from recipients, and included the subject line “Important: Latest Information Regarding DHL Shipments” to come off as important. 

[![phishing](https://media.mailhop.org/duocircle/images/2024/04/spf-record-check-7832.jpg)](/data-privacy/check-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins/attachment/hacker-fishing-credit-card)

_The email had a [phishing link](https://www.vishvasnews.com/english/viral/fact-check-phishing-link-being-circulated-as-qatar-airways-anniversary-offer/) to a fraudulent website that claimed to be DHL’s official platform_. It showed a simulated shipping process for a parcel that was tagged as ‘pending’ and asked for a **small amount to resume** its movement in transit. 

## Deceptive Emails from Microsoft

Hackers launched a [phishing campaign](https://blogs.blackberry.com/en/2024/04/fin7-targets-the-united-states-automotive-industry) where a **variety of false emails** were sent to deceive recipients with subject lines like “Message Failure Delivery Notice,” “Outlook Info Replacement,” “Annual Leave Compliance Report for 2024” and “Please Complete: Invoice from DocuSign Electronic Signature Service.”

The emails included links to injected and [cloned websites](https://www.ncrypted.net/blog/what-is-website-cloning/) that looked like Outlook’s official pages and requested visitors to enter login credentials. Their credentials were then used to **extract personal details**, posing a security threat. 

_To avoid being a victim of such attacks, we encourage you to always **verify the email sender’s address**, hover over links to check their destination before clicking, be cautious of urgent or suspicious requests for personal information, and bolster your [phishing protection](/email/phishing-protection)_.

[![cyberattacks](https://media.mailhop.org/duocircle/images/2024/04/sender-policy-framework-7432.jpg)](/data-privacy/check-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins/attachment/print-3)

## Other Trends in the Report

- The **first quarter of 2024** registered a 28% increase in the average number of [cyberattacks](/data-privacy/rising-cyberattacks-and-emerging-risks-impacting-the-cyber-world/) per organization as compared to the fourth quarter of 2023\.
- Europe recorded a staggering 64% surge in [ransomware](/data-privacy/8-most-nefarious-ransomware-attacks-from-2017-to-mid-2023/) instances, followed by Africa, which saw 18% of such attacks. Unfortunately, North America suffered the **highest impact**, with 59% out of close to 1000 published [ransomware attacks](https://www.bbc.com/news/technology-68288150).
- The education and research industry reflected a blowing average of **2454 attacks per organization per week**.
- The communication sector registered the highest year-on-year increase of 177% in ransomware incidents, although it accounted for only 4% of reported attacks in Q1 2024\. This steep surge is anticipated to emerge from the sector’s **rapid digital transformation**. Experts also believe that vulnerabilities have expanded due to the [integration and growth of 5G](https://www.einnews.com/pr%5Fnews/703687177/5g-security-market-on-the-rise-companies-invest-billions-in-cyber-protection) and [IoT devices](https://www.iottechnews.com/news/2024/feb/14/iot-security-remains-top-concern-enterprises-in-2024/).

Some common [cybersecurity](/) practices like securing emails with [DMARC](/email/dmarc), **educating employees** on reading red flags, getting rid of old devices, establishing firewalls, restricting access to critical information to only managers and CXOs, etc., help stay out of threat actors’ radar.

## Topics

SecurityTrendsUpdates 

![Brad Slavin](https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg) 

Brad Slavin 

General Manager

General Manager at DuoCircle. Product strategy and commercial lead across the email security portfolio.

## Secure your email infrastructure

Protect, authenticate, and deliver. Contact our team to find the right solution.

[Contact Sales](/contact/) [Explore Products](/products/) 

## Related Articles

[  Privacy 6m  AI Models Are Stealing Your Passwords By Listening To Your Keyboard  Oct 20, 2023 ](/blog/data-privacy/ai-models-are-stealing-your-passwords-by-listening-to-your-keyboard/)[  Privacy 6m  Cyber Security vs Ethical Hacking: What’s the Difference?  Apr 10, 2024 ](/blog/data-privacy/cyber-security-vs-ethical-hacking-whats-the-difference/)[  Privacy 3m  Cybercrime Surge: The Automotive Sector Under Siege!  May 23, 2024 ](/blog/data-privacy/cybercrime-surge-the-automotive-sector-under-siege/)[  Privacy 5m  Cybersecurity Conferences that CISOs Should Attend in 2024  Apr 3, 2024 ](/blog/data-privacy/cybersecurity-conferences-that-cisos-should-attend-in-2024/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}],"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://www.g2.com/products/phish-protection-by-duocircle/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://support.duocircle.com"},"knowsAbout":["Email Security","Email Authentication","SPF","DKIM","DMARC","Phishing Protection","Spam Filtering","SMTP Relay","Email Deliverability","Email Forwarding"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"DuoCircle LLC","url":"https://www.duocircle.com","description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}
```

```json
[{"@context":"https://schema.org","@type":"BlogPosting","headline":"Check Point Research Q1 2024 Results- Microsoft, Google, and Linkedin Topped the List; Airbnb is a New Entry","description":"Check Point Research Q1 2024 Results- Microsoft, Google, and Linkedin Topped the List; Airbnb is a New Entry.","url":"https://www.duocircle.com/blog/data-privacy/check-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins/","datePublished":"2024-04-18T17:05:30.000Z","dateModified":"2025-04-10T18:31:43.000Z","dateCreated":"2024-04-18T17:05:30.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/data-privacy/check-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins/"},"articleSection":"data-privacy","keywords":"Security, Trends, Updates","wordCount":505,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2024/04/spf-record-7732.jpg","caption":"Microsoft, Google, and Linkedin","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}},{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":2,"name":"Privacy"},{"@type":"ListItem","position":3,"name":"Check Point Research Q1 2024 Results- Microsoft, Google, and Linkedin Topped the List; Airbnb is a New Entry","item":"https://www.duocircle.com/blog/data-privacy/check-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins/"}]}]
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://www.duocircle.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":3,"name":"Privacy","item":"https://www.duocircle.comundefined"},{"@type":"ListItem","position":4,"name":"Check Point Research Q1 2024 Results- Microsoft, Google, and Linkedin Topped the List; Airbnb is a New Entry","item":"https://www.duocircle.com/blog/data-privacy/check-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins/"}]}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Check Point Research Q1 2024 Results- Microsoft, Google, and Linkedin Topped the List; Airbnb is a New Entry","description":"Check Point Research Q1 2024 Results- Microsoft, Google, and Linkedin Topped the List; Airbnb is a New Entry.","url":"https://www.duocircle.com/blog/data-privacy/check-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins/","datePublished":"2024-04-18T17:05:30.000Z","dateModified":"2025-04-10T18:31:43.000Z","dateCreated":"2024-04-18T17:05:30.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/data-privacy/check-point-research-q1-2024-microsoft-google-linkedin-lead-airbnb-joins/"},"articleSection":"data-privacy","keywords":"Security, Trends, Updates","wordCount":505,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2024/04/spf-record-7732.jpg","caption":"Microsoft, Google, and Linkedin","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```