Phishing Activity: Key Statistics
Quarter over Quarter comparison: February 1, 2023 - April 30, 2023

Each reporting period, we analyze URLs, domain names, and IP addresses reported for phishing. We use these and other metadata — domain and IP address registration data, ICANN registry and registrar monthly reports, routing data, attack type, and other indicators — to report key statistics for each reporting period.

A comparison of key statistics for the periods November 1, 2022 - January 31, 2023 and February 1, 2023 - April 30, 2023 appears in the table below.

Measurement November to January 2023 February to April 2023 Change
in
Measurement
Total number of phishing reports collected from feeds (per quarter) 1,677,226 766,720 -910,506
Phishing attacks reported 564,592 382,422 -182,170
Unique domain names reported for phishing 426,364 208,031 -218,333
Maliciously registered domains reported for phishing 308,467 140,041 -168,426
Top-level Domains (TLDs) where we observed phishing 567 534 -33
gTLD Registrars that had domains under management reported for phishing 661 713 52
All Registrars that had domains under management reported for phishing 1,302 1,320 18
Hosting Networks (ASNs) where phishing web sites were reported 2,666 2,167 -499
Brands targeted in phishing attacks 1,238 2,813 1,575
Number of phishing attacks using a subdomain reseller 60,794 102,775 41,981