bs-bd-intro
Real-Time Statistics

Phishing Insights Center

At Bolster, we leverage data from our CheckPhish phishing community of security researchers worldwide to provide valuable insights into the ever-evolving threat landscape of phishing and scam attacks. By analyzing billions of data points collected from thousands of active security researchers, we equip organizations with knowledge to understand the state of phishing.

Phishing Insights Center
Crowdsourced Intelligence

Daily Phishing Highlights

We collect a vast amount of data, including the total number of scans conducted daily, the number of total users, and the active organizations within our research community. These statistics help us gauge the scale and impact of phishing attacks worldwide and how the security community is responding.

Search

Total Scans Daily

3460781
User

Total CheckPhish Users

42524
People

Total CheckPhish Organizations

6980
Last scan updated on 2025/06/18 20:00:00
Uncover Phishing Campaigns

In-Depth Phishing and Scam Analysis

In addition to the phishing highlights, our analysis dives deeper into the specific characteristics of these scans of phishing attacks. We review and report on various aspects, including :

Count

Total Phishing and Scam Counts

Quantifying the number of detected phishing attempts and scams provides a clear picture of the prevalent threats faced by businesses and individuals.

Phish

751879

Scam

214238

Total Count

966117
Last scan updated on 2025/06/15 23:59:59
Cloud
Top Hosting Providers

Identifying hosting providers that unknowingly host phishing websites aids in collaboration between security teams and hosting providers to combat malicious activities.

Clipboard
Top Registrars

Tracking the registrars associated with phishing attacks aids in detecting and shutting down illicit domains more effectively.

Route
Top Countries of Origin

Understanding the countries where phishing campaigns originate provides vital insight into the geographic distribution of threats.

Global
Top-Level Domains (TLDs) Used

Recognizing the TLDs that are frequently abused by phishers helps identify potential sources of fraudulent activity.

Global
Categories

Identifying the top categories that attacker leverage for phishing and scam campaigns can help organizations be more alert about the risk to their industry.

1.
streaming
297031
2.
gambling
123178
3.
tech_support
44727
4.
online_store
20561
5.
error_page
15386
6.
captcha
13081
7.
crypto
11833
8.
banking
6675
9.
app_store
2904
10.
drug
2735
11.
domain_parking
2410
12.
adult
1091
13.
promo_code
655
14.
gift_card
396
15.
domain_purchase
214
16.
url_shortener
198
17.
warning
77
18.
directory_listing
28
19.
crypto_giveaway
3
Top IP Addresses

Analyzing IP addresses associated with phishing attacks assists in identifying potential sources of malicious activity and blocking them proactively.

185.199.111.153
81854
185.199.108.153
81693
185.199.109.153
81634
185.199.110.153
81626
104.18.36.248
14667
172.64.151.8
14665
199.36.158.100
10444
104.21.64.1
10256
104.21.96.1
10248
104.21.112.1
10226
104.21.80.1
10173
104.21.32.1
10156
104.21.48.1
10145
104.21.16.1
10125
66.85.46.152
9315
45.67.214.6
8808
77.83.207.55
8213
185.159.247.105
7390
45.67.214.4
5251
80.82.76.140
4846
161.35.232.130
4845
172.67.174.92
4274
104.21.80.53
4218
45.137.212.37
4034
104.26.2.211
3872
172.67.71.226
3860
104.26.3.211
3818
148.251.28.178
3732
45.137.212.36
3628
162.159.128.45
3559
162.159.138.44
3549
34.91.142.64
3396
34.91.234.242
3367
34.91.226.152
3156
64.29.17.193
3110
34.90.14.205
3080
185.159.247.239
2999
216.198.79.193
2990
64.29.17.129
2968
216.198.79.129
2921
185.159.247.103
2889
104.26.3.39
2844
172.67.73.59
2764
104.26.2.39
2750
69.16.229.65
2376
45.67.214.8
2316
69.147.80.12
2286
69.147.80.15
2254
172.67.68.42
2251
104.26.13.63
2210
104.26.12.63
2209
162.159.140.237
2150
Toolkit Analysis

Phishing Kit Metrics

In our continuous efforts to combat phishing, we closely monitor and assess phishing kits that are part of these phishing campaigns. These numbers provide important insights into the tools and techniques employed by hackers. Our analysis covers factors such as:

Search

Total Phishing Kits

Quantifying the number of phishing kits discovered allows us to gauge the proliferation of these malicious resources.

Email

Unique Drop Emails

Identifying the unique drop email addresses used for phishing attacks helps in tracking the infrastructure utilized by bad actors. A “drop email” refers to the email address that is used to collect users’ secret credentials from phishing websites.

Global Search

Domains with Victim Emails

Recognizing the domains where victim emails are being sent aids in the identification and mitigation of ongoing campaigns.

Protect Your Organization

Stop Phishing Campaigns From Targeting You

By comprehensively analyzing these scans of phishing campaigns, we gain a deeper understanding of the latest techniques and trends of hackers. This knowledge enables us to develop effective risk mitigation and phishing countermeasures to help organizations protect themselves from the growing threat of phishing and scam attacks.

Need to take down phishing and scam sites and contents?
Get Help Now!
buyers-guide
Buyer’s Guide

Buyer’s Guide: Purchasing a Brand Security Solution

Download Now
AI Security for Email One-Pager
AI Security for Email One-Pager

Bolster’s AI Security for Email: The Protection Your Need in One Page

Get the One-Pager
bs-2024-election-report
2024 Presidential Election Report

Discover the latest phishing and online scams threatening the democratic process

Read the Report
2024 Mid-Year Phishing Report

Protect Your Business from Evolving Phishing and Election Scams

Download Now
bs-stop-the-steal
Master BEC Defense

Protect Your Business from BEC Scams with Our Latest Whitepaper

Download Now
Domain Risk Report

Want Visibility into Your Domain Threats? Get Your Free Domain Risk Report Now!

Learn More