Phishing attacks are on the rise, and they’re more sophisticated than ever. Therefore, it comes as no surprise that they’re considered the biggest security risk to organizations in 2020.

There are a number of reasons that make mobile a particularly fertile breeding ground for phishing attacks. The smaller screen size makes it more difficult to inspect URLs, the personal nature of mobile phones means we instill more trust in them, and the on-the-move nature of the device results in us being less vigilant.

Wandera’s research shows that 57% of organizations have suffered a mobile phishing attack and that 87% of them occur outside of email – with fake sites collecting sensitive user data being the preferred vehicle of attack. Our threat intelligence team, along with the help of our real-time phishing detection machine,MI:RIAM, discovered that 60% of phishing attacks on mobile occur over HTTPS.

To demonstrate how sophisticated these attacks have become, we’ve brought to you a selection of real phishing incidents that we detected and blocked across our network. The only catch is we’ve hidden them amongst the genuine sites they’re impersonating.

Which of these shows the official Amazon login page?

Correct! Wrong!

Click on the fake Apple login page

Correct! Wrong!

Which Netflix login page would you trust with your details?

Correct! Wrong!

Which of these is the official LinkedIn page?

Correct! Wrong!

Which Paypal doesn't look legit?

Correct! Wrong!

Can you spot the phish?
Nearly a full house
Well done. You can spot a fake from a mile off.
Full marks
You're not getting fooled by anyone. Well done you!
Watch out - you're an easy target
Unlucky. These convincing fakes had you fooled!
Ouch, you got four wrong!
Unlucky, these convincing fakes had you fooled.
Middle of the road
Well done, you got three right - but some of these convincing fakes still had you fooled.

Share your Results:

How to spot a fake

As you can see, these fake sites are very convincing. However, there are a number of things you can do to secure yourself online.

Part of the issue is education, and part of it is infrastructure.

Wandera has built the only technology that can automatically detect, alert and block traffic to mobile phishing sites in real-time, including zero-day phishing attacks — specifically ones that operate outside email. Zero-day phishing is critical in stopping both the common attacks and the more sophisticated ones that are launched against your business.

If you’d like more information about how to protect your enterprise against phishing attacks, book an appointment with one of our mobility experts.