Phishing Activity: Key Statistics
May 1, 2021 - July 31, 2021

We analyzed URLs, domain names, and IP addresses that have been reported for phishing. These and other metadata - e.g., registration data, DNS zone data, attack type and targeted brand - allow us to determine where phishers are acquiring resources for their criminal activities. Indicators of compromise allow us to distinguish hostnames delegated from domains that were purposely registered for phishing campaigns from hostnames assigned to compromised web sites that were delegated from domain names for legitimate purposes.

During this period, we measured phishing reports, phishing attacks, and the number of unique domain names reported for use in phishing attacks. We also measured famous brands that were targeted by phishers.

  Measurement
    
Count

    Total number of phishing reports this quarter
    574,412
  
    Phishing attacks reported
    283,065
  
    Unique domain names reported for phishing
    222,740
  
    Top-level Domains (TLDs) where we observed phishing
    504
  
    Registrars that had gTLD domains under management reported for phishing
    474
  
    Hosting Networks (ASNs) where phishing web sites were reported
    2,391
  
    Brands targeted in phishing attacks
    1,062

Measurement	Count
Total number of phishing reports this quarter	574,412
Phishing attacks reported	283,065
Unique domain names reported for phishing	222,740
Top-level Domains (TLDs) where we observed phishing	504
Registrars that had gTLD domains under management reported for phishing	474
Hosting Networks (ASNs) where phishing web sites were reported	2,391
Brands targeted in phishing attacks	1,062

Key Statistics

Activity in TLDs

Activi ty in D omain Reg istrars

Activity in Hosti ng Networks (ASNs )

Phishing Activity: Key Statistics May 1, 2021 - July 31, 2021

Phishing Activity: Key Statistics
May 1, 2021 - July 31, 2021