bs-bd-intro
Real-Time Statistics

Phishing Insights Center

At Bolster, we leverage data from our CheckPhish phishing community of security researchers worldwide to provide valuable insights into the ever-evolving threat landscape of phishing and scam attacks. By analyzing billions of data points collected from thousands of active security researchers, we equip organizations with knowledge to understand the state of phishing.

Phishing Insights Center
Crowdsourced Intelligence

Daily Phishing Highlights

We collect a vast amount of data, including the total number of scans conducted daily, the number of total users, and the active organizations within our research community. These statistics help us gauge the scale and impact of phishing attacks worldwide and how the security community is responding.

Search

Total Scans Daily

2801771
User

Total CheckPhish Users

39377
People

Total CheckPhish Organizations

6452
Last scan updated on 2025/04/19 01:00:00
Uncover Phishing Campaigns

In-Depth Phishing and Scam Analysis

In addition to the phishing highlights, our analysis dives deeper into the specific characteristics of these scans of phishing attacks. We review and report on various aspects, including :

Count

Total Phishing and Scam Counts

Quantifying the number of detected phishing attempts and scams provides a clear picture of the prevalent threats faced by businesses and individuals.

Phish

763280

Scam

216475

Total Count

979755
Last scan updated on 2025/04/13 23:59:59
Cloud
Top Hosting Providers

Identifying hosting providers that unknowingly host phishing websites aids in collaboration between security teams and hosting providers to combat malicious activities.

Clipboard
Top Registrars

Tracking the registrars associated with phishing attacks aids in detecting and shutting down illicit domains more effectively.

Route
Top Countries of Origin

Understanding the countries where phishing campaigns originate provides vital insight into the geographic distribution of threats.

Global
Top-Level Domains (TLDs) Used

Recognizing the TLDs that are frequently abused by phishers helps identify potential sources of fraudulent activity.

Global
Categories

Identifying the top categories that attacker leverage for phishing and scam campaigns can help organizations be more alert about the risk to their industry.

1.
streaming
337652
2.
gambling
141173
3.
tech_support
59634
4.
online_store
29181
5.
crypto
13788
6.
captcha
13616
7.
error_page
12526
8.
app_store
3427
9.
banking
3424
10.
domain_parking
1533
11.
drug
644
12.
adult
542
13.
promo_code
359
14.
warning
278
15.
gift_card
257
16.
domain_purchase
203
17.
crypto_giveaway
100
18.
url_shortener
46
19.
directory_listing
15
Top IP Addresses

Analyzing IP addresses associated with phishing attacks assists in identifying potential sources of malicious activity and blocking them proactively.

185.199.110.153
91695
185.199.111.153
91591
185.199.108.153
91556
185.199.109.153
91185
82.25.112.90
18672
172.93.123.66
17687
104.18.36.248
16962
172.64.151.8
16932
184.27.179.35
11383
80.82.76.140
11242
104.21.16.1
10000
104.21.96.1
9939
104.21.48.1
9872
104.21.80.1
9871
104.21.112.1
9843
104.21.64.1
9804
104.21.32.1
9800
45.67.214.6
9688
91.224.59.26
7659
149.56.23.157
7062
192.124.249.38
6239
199.36.158.100
5634
172.67.71.226
5347
104.26.3.211
5337
104.26.2.211
5295
45.137.212.36
3856
104.18.22.35
3561
104.18.23.35
3521
45.137.212.37
3218
23.54.153.9
3042
170.249.195.106
2913
216.198.53.1
2276
216.198.54.1
2259
91.224.59.25
1995
54.37.204.38
1961
103.42.58.102
1914
104.18.43.47
1900
104.17.52.83
1894
172.64.144.209
1833
64.29.17.65
1801
104.22.13.84
1798
34.91.142.64
1782
64.29.17.1
1779
216.198.79.193
1775
34.91.234.242
1764
216.198.79.65
1732
216.198.79.1
1732
64.29.17.193
1728
64.29.17.129
1712
172.67.7.136
1711
216.198.79.129
1697
100.21.24.69
1696
Toolkit Analysis

Phishing Kit Metrics

In our continuous efforts to combat phishing, we closely monitor and assess phishing kits that are part of these phishing campaigns. These numbers provide important insights into the tools and techniques employed by hackers. Our analysis covers factors such as:

Search

Total Phishing Kits

Quantifying the number of phishing kits discovered allows us to gauge the proliferation of these malicious resources.

Email

Unique Drop Emails

Identifying the unique drop email addresses used for phishing attacks helps in tracking the infrastructure utilized by bad actors. A “drop email” refers to the email address that is used to collect users’ secret credentials from phishing websites.

Global Search

Domains with Victim Emails

Recognizing the domains where victim emails are being sent aids in the identification and mitigation of ongoing campaigns.

Protect Your Organization

Stop Phishing Campaigns From Targeting You

By comprehensively analyzing these scans of phishing campaigns, we gain a deeper understanding of the latest techniques and trends of hackers. This knowledge enables us to develop effective risk mitigation and phishing countermeasures to help organizations protect themselves from the growing threat of phishing and scam attacks.

Need to take down phishing and scam sites and contents?
Get Help Now!
buyers-guide
Buyer’s Guide

Buyer’s Guide: Purchasing a Brand Security Solution

Download Now
AI Security for Email One-Pager
AI Security for Email One-Pager

Bolster’s AI Security for Email: The Protection Your Need in One Page

Get the One-Pager
bs-2024-election-report
2024 Presidential Election Report

Discover the latest phishing and online scams threatening the democratic process

Read the Report
2024 Mid-Year Phishing Report

Protect Your Business from Evolving Phishing and Election Scams

Download Now
bs-stop-the-steal
Master BEC Defense

Protect Your Business from BEC Scams with Our Latest Whitepaper

Download Now
Dark Web for Dummies E-Book

Unlock the Secrets of the Dark Web with Our Latest E-book

Download Now
Domain Risk Report

Want Visibility into Your Domain Threats? Get Your Free Domain Risk Report Now!

Learn More