Financial institutions, ePayment and money transfer services, and social networks are the top three targets of phishing kits, respectively, according to PhishLabs.

Email services is also a big target, according to a Wednesday post by Don Jackson, director of threat intelligence with PhishLabs.

Other lower risk targets include eCommerce, online gaming, content providers, and instant messaging and chat services, as well as job sites, file sharing sites, parcel services, photo services, and subscription sites.

Some of the online banking and payment services are under constant attack, according to Jackson, who added that attackers value social media accounts as “components of cybercrime schemes.”

The findings are based on a roughly one-month PhishLabs analysis of almost 9,000 phishing kits and variants that are available on compromised servers, file sharing services, underground forums, and blogs, according to the post.