Summary:
In the first quarter of 2025, Steam became the most imitated brand in phishing campaigns, marking a shift from the usual dominance of tech giants like Microsoft and Meta, Guardio researchers reported. Scammers heavily targeted Steam’s massive gaming user base with phishing messages falsely warning of account issues such as failed payments or suspicious logins to trick victims into entering credentials on lookalike websites. Once entered, these credentials were harvested and used to hijack accounts, often resold on underground forums or used in further fraudulent activity.A particularly noteworthy trend was the surge in phishing targeting U.S. electronic toll collection systems, which saw SunPass, E-ZPass, and EZDrive Massachusetts all rank among the top ten most impersonated brands. Guardio noted a staggering 604% increase in toll-related scam text messages since the start of the year, with a sharp 98% week-over-week jump observed in March. These messages typically claimed the recipient had unpaid toll fees and directed them to phishing pages that harvested personal and payment information. Researchers attributed this spike in activity to the rise of phishing-as-a-service (PhaaS) platforms like Darcula and Lucid. These services provide users with ready-made phishing kits that mimic popular brands, including road toll systems, and use advanced delivery tactics, such as leveraging iMessage and Android RCS to bypass SMS filters and boost delivery and success rates.


Security Officer Comments:
In addition to tech and infrastructure services, phishing actors have also begun exploiting economic shifts in the retail sector. Following the announcements of store closures and bankruptcy filings by brands like Forever 21 (March 2025) and JOANN (February 2025), phishers launched fake “going out of business” promotions. These scams used realistic-looking advertisements and fraudulent websites to collect payment data from customers looking for clearance deals on merchandise that never ships. This tactic demonstrates how attackers quickly adapt their lures to exploit consumer sentiment and current events for financial gain.


Suggested Corrections:


As scams continue to evolve, staying vigilant is key to protecting yourself. The scammers are relentless, but by following these tips, you can outsmart them:

• Use Security Tools: Scams are becoming more sophisticated, with scammers using AI to create high-quality, convincing scams at scale. These are harder to detect, and the human eye is no longer enough. The most effective way to protect yourself is by using comprehensive security tools like Guardio. They can block harmful phishing sites and fraudulent emails before they even reach your inbox.
• Verify the Link(s): Always go to the site yourself by typing in the address directly, rather than clicking on links in emails or texts.
• Be Skeptical of Urgency: Scammers love to pressure victims into acting quickly. If a message demands immediate action or claims your account is in jeopardy, take a moment to verify the details through official channels.

Link(s):


https://www.helpnetsecurity.com/2025/04/03/electronic-toll-collection-phishing/

https://guard.io/blog/most-imitated-brands-phishing-scams-q1-2025