Phishing Activity: Key Statistics
Quarter over Quarter comparison:
February 1, 2021 - April 30, 2022

Each reporting period, we analyze URLs, domain names, and IP addresses reported for phishing. We use these and other metadata – domain and IP address registration data, ICANN registry and registrar monthly reports, routing data, attack type, and other indicators – to report key statistics for each reporting period.

We identified 303,348 phishing attacks in the February 1, 2022 - April 30, 2022 period, a 5% increase over the previous period.

5% INCREASE IN MALICIOUSLY REGISTERED DOMAINS REPORTED FOR PHISHING

17% INCREASE IN BRANDS TARGETED FOR PHISHING

14% DECREASE IN REGISTRARS THAT HAD DOMAINS REPORTED FOR PHISHING

A comparison of key statistics from appears in the table below.

Measurement November 2021 to January 2022 February to April 2022 Change
in
Measurement
Phishing attacks reported 289,996 303,348 13,352
Unique domain names reported for phishing 222,059 223,324 1,265
Maliciously registered domains reported for phishing 140,696 147,036 6,340
Top-level Domains (TLDs) where we observed phishing 534 519 -15
gTLD Registrars that had domains under management reported for phishing 527 453 -74
All Registrars that had domains under management reported for phishing 835 1,063 228
Hosting Networks (ASNs) where phishing web sites were reported 2,554 2,617 63
Brands targeted in phishing attacks 1,070 1,254 184