bs-bd-intro
Real-Time Statistics

Phishing Insights Center

At Bolster, we leverage data from our CheckPhish phishing community of security researchers worldwide to provide valuable insights into the ever-evolving threat landscape of phishing and scam attacks. By analyzing billions of data points collected from thousands of active security researchers, we equip organizations with knowledge to understand the state of phishing.

Phishing Insights Center
Crowdsourced Intelligence

Daily Phishing Highlights

We collect a vast amount of data, including the total number of scans conducted daily, the number of total users, and the active organizations within our research community. These statistics help us gauge the scale and impact of phishing attacks worldwide and how the security community is responding.

Search

Total Scans Daily

2987510
User

Total CheckPhish Users

44883
People

Total CheckPhish Organizations

7399
Last scan updated on 2025/07/31 19:00:00
Uncover Phishing Campaigns

In-Depth Phishing and Scam Analysis

In addition to the phishing highlights, our analysis dives deeper into the specific characteristics of these scans of phishing attacks. We review and report on various aspects, including :

Count

Total Phishing and Scam Counts

Quantifying the number of detected phishing attempts and scams provides a clear picture of the prevalent threats faced by businesses and individuals.

Phish

1031452

Scam

257120

Total Count

1288572
Last scan updated on 2025/07/27 23:59:59
Cloud
Top Hosting Providers

Identifying hosting providers that unknowingly host phishing websites aids in collaboration between security teams and hosting providers to combat malicious activities.

Clipboard
Top Registrars

Tracking the registrars associated with phishing attacks aids in detecting and shutting down illicit domains more effectively.

Route
Top Countries of Origin

Understanding the countries where phishing campaigns originate provides vital insight into the geographic distribution of threats.

Global
Top-Level Domains (TLDs) Used

Recognizing the TLDs that are frequently abused by phishers helps identify potential sources of fraudulent activity.

Global
Categories

Identifying the top categories that attacker leverage for phishing and scam campaigns can help organizations be more alert about the risk to their industry.

1.
streaming
234190
2.
gambling
117573
3.
tech_support
61564
4.
online_store
16197
5.
error_page
15096
6.
crypto
13009
7.
captcha
12955
8.
banking
6580
9.
drug
4202
10.
app_store
2901
11.
domain_parking
2013
12.
promo_code
1214
13.
domain_purchase
1082
14.
adult
702
15.
gift_card
323
16.
warning
75
17.
crypto_giveaway
36
18.
directory_listing
20
19.
url_shortener
19
20.
social_media
11
21.
traffic_stealer
9
Top IP Addresses

Analyzing IP addresses associated with phishing attacks assists in identifying potential sources of malicious activity and blocking them proactively.

185.39.19.180
205737
77.83.207.55
101136
185.199.108.153
63180
185.199.111.153
63141
185.199.109.153
63107
185.199.110.153
62812
199.36.158.100
20518
38.242.255.198
14471
104.18.36.248
13261
172.64.151.8
13082
104.21.32.1
12059
104.21.48.1
11941
104.21.64.1
11900
104.21.96.1
11893
104.21.80.1
11858
104.21.16.1
11803
104.21.112.1
11792
194.156.26.6
9689
50.6.172.228
6824
185.159.247.105
6395
194.156.26.4
6117
185.159.247.103
5651
109.234.166.200
5059
162.159.128.45
4892
162.159.138.44
4888
165.227.201.183
4831
104.26.3.211
4671
172.67.71.226
4666
104.26.2.211
4650
192.81.128.168
4613
185.184.154.169
4260
185.159.247.239
3850
172.66.150.17
3713
104.20.45.115
3668
34.91.234.242
3423
34.91.142.64
3368
172.67.130.86
3317
104.21.7.157
3190
54.82.254.189
3089
45.10.243.9
3078
104.26.3.39
2705
104.26.2.39
2701
99.84.69.86
2689
172.67.73.59
2688
34.54.192.65
2609
35.212.47.135
2456
66.29.141.39
2302
104.21.12.13
2302
34.91.226.152
2263
104.26.12.63
2260
104.21.85.111
2242
172.67.204.210
2240
Toolkit Analysis

Phishing Kit Metrics

In our continuous efforts to combat phishing, we closely monitor and assess phishing kits that are part of these phishing campaigns. These numbers provide important insights into the tools and techniques employed by hackers. Our analysis covers factors such as:

Search

Total Phishing Kits

Quantifying the number of phishing kits discovered allows us to gauge the proliferation of these malicious resources.

Email

Unique Drop Emails

Identifying the unique drop email addresses used for phishing attacks helps in tracking the infrastructure utilized by bad actors. A “drop email” refers to the email address that is used to collect users’ secret credentials from phishing websites.

Global Search

Domains with Victim Emails

Recognizing the domains where victim emails are being sent aids in the identification and mitigation of ongoing campaigns.

Protect Your Organization

Stop Phishing Campaigns From Targeting You

By comprehensively analyzing these scans of phishing campaigns, we gain a deeper understanding of the latest techniques and trends of hackers. This knowledge enables us to develop effective risk mitigation and phishing countermeasures to help organizations protect themselves from the growing threat of phishing and scam attacks.

Need to take down phishing and scam sites and contents?
Get Help Now!
buyers-guide
Buyer’s Guide

Buyer’s Guide: Purchasing a Brand Security Solution

Download Now
AI Security for Email One-Pager
AI Security for Email One-Pager

Bolster’s AI Security for Email: The Protection Your Need in One Page

Get the One-Pager
bs-2024-election-report
2024 Presidential Election Report

Discover the latest phishing and online scams threatening the democratic process

Read the Report
2024 Mid-Year Phishing Report

Protect Your Business from Evolving Phishing and Election Scams

Download Now
bs-stop-the-steal
Master BEC Defense

Protect Your Business from BEC Scams with Our Latest Whitepaper

Download Now
Domain Risk Report

Want Visibility into Your Domain Threats? Get Your Free Domain Risk Report Now!

Learn More