The increase in Phishing shows that phishers continue to pursue these economically driven techniques, with more hacking of legitimate servers and especially shared web hosting environments. Also, phishers continue to concentrate on victims that can be monetized effectively and efficiently.
|Phishing domain names||64204||50298||79753||42624||28646|
|IP-based phishing (unique IPs)||1864||1681||2385||2318||2018|
|Maliciously registered domains||7712||12895||14650||11769||4755|
|Number of targets||486||487||520||587||568|
Major Findings of the report
- The average and median uptimes of phishing attacks dropped to a record low in 1H2012, by far the lowest since measuring in January 2008.
- The number of phishing attacks increased by 12% in first half of 2012
- Phishers registered more subdomains than regular domain names, while the number of domain names registered by phishers has dropped by almost half since early 2011.
- The number of targeted institutions has dropped; phishers continue to target larger or more popular targets.
- There were at least 93,462 unique phishing attacks worldwide, in 202 top-level domains (TLDs).
- In addition, 2,410 attacks were detected on 1,864 unique IP addresses, rather than on domain names.
- Phishing is generally distributed by top-level domain market share, but 90% of the malicious domain registrations were in just three TLDs: .TK, .COM, and .IN.
- Instead of hacking websites one at a time, phishers are breaking into shared hosting web servers that host large numbers of domains. This way, a phisher can infect dozens, hundreds, or even thousands of websites at one time.
- Read full report
Here at Lifefive, we’ve already written about How to detect Phishing website.