The phishing threat in numbers
Figure 1: Attacks by industry, 1H2014 – excluding shared virtual server attacks
The Anti-phishing Working Group’s (APWG) Global Phishing Survey 1H2014: Trends and Domain Name Use seeks to understand trends and their significance by quantifying the scope of the global phishing problem. The results provide brand owners with insight into phishing trends and can help to inform enforcement strategies.
The latest findings include the following:
- Apple was the world’s most-phished brand in the first six months of the year (21,951 attacks), followed by PayPal (17,811) and Taobao.com (16,418).
- The introduction of new top-level domains has not had an immediate major impact on phishing (while phishing occurred in 227 top-level domains, 90% of malicious domain registrations were located in just five – ‘.com’, ‘.tk’, ‘.pw’, ‘.cf’ and ‘.net’); but this is expected to change as the market becomes more competitive.
- Chinese phishers were responsible for 85% of the domain names that were registered for phishing.
- Malicious domain and sub-domain registrations continue at historically high levels.
- The brands targeted by phishing targets were diverse, with many new targets, indicating that e-criminals are looking for new opportunities in new places.
Figure 2: Phishing attacks, domains 2H2010-1H2014
Figure 3: All phishing attacks by TLD, 1H2014
Rank |
Registrar |
Malicious domains |
gTLD domains at registrar, April 2014 |
Malicious domains per 10,000 |
1 |
Chengdu Fly-Digital Technology Co |
396 |
59,853 |
66 |
2 |
Foshanyidong Network Co Ltd |
262 |
106,637 |
25 |
3 |
bizcn.com |
1,475 |
605,117 |
24 |
4 |
4 Beijing Innovative Linkage Technology Ltd DBA dns.com.cn |
1,123 |
503,255 |
22 |
5 |
35 Technology Co |
612 |
486,104 |
13 |
6 |
Xin Net Technology Corporation |
1583 |
1,629,895 |
10 |
7 |
Eranet International (Todaynic) |
103 |
110,000 |
9 |
8 |
Shanghai Meicheng Technology Information Development Co |
123 |
216,890 |
6 |
9 |
PDR Ltd D/B/A publicdomainregistry.com |
1,795 |
4,276,163 |
4 |
10 |
Shanghai Yovole Networks Inc |
132 |
423,183 |
3 |
11 |
Network Solutions, LLC |
2,064 |
7,212,702 |
3 |
12 |
Chengdu West Dimension Digital Technology Co |
120 |
419,377 |
3 |
13 |
register.com, Inc |
648 |
2,750,202 |
2 |
14 |
register.it SPA |
131 |
572,744 |
2 |
15 |
Jiangsu Bangning Science & Technology Co Ltd |
78 |
374,189 |
2 |