Phishing websites up 10 percent in Q1 2014, the U.S. still hosts the majority

The United States continued to host the majority of phishing websites in the first quarter of 2014, but did not even crack the top 36 when it came to global computer infection rates, according to research from the Anti-Phishing Working Group (APWG).

The number of overall phishing sites observed in the first quarter of 2014 was 125,215, marking a more than 10 percent increase over the final quarter of 2013, during which 111,773 phishing sites were observed, according to the APWG Phishing Activity Trends Report for the first quarter of 2014.

The U.S. hosted more than 40 percent of those sites in each of the first three months of the year, according to the report. The U.S. hosted more than 56 percent of phishing websites in January, but that number dropped a bit following an uptick of sites hosted in Turkey in February and March.

“The U.S. hosts the most phishing sites because a large percentage of the world's websites and domain names are hosted in the United States,” Greg Aaron, president of Illumintel and senior research fellow with APWG, told in a Wednesday email correspondence.

John Lacour, founder of PhishLabs, told in a Wednesday email correspondence that about 80 percent of phishing sites are hosted on compromised websites, according to PhishLabs data. Lacour said that trend will not change until website security is significantly improved.

The number of brands and legitimate entities targeted in phishing attacks also went up in the first quarter of 2014, jumping to 557 from 525 in the previous quarter, according to the report.

“Criminals [are] attacking new brands,” Aaron said. “Almost any enterprise that takes in personal data via the web is a potential target. While phishing has traditionally targeted banks and money transfer services such as PayPal, we're seeing a wider range of targets getting spoofed, such as Airbnb and grocery store chains.”

Close to 50 percent of phishing attacks were aimed at payment services in the first quarter of 2014, making it still the most targeted industry, and the financial industry was a target about 20 percent of the time, according to the report. The ISP, gaming, auction, government and social networking industries were each targeted less than 10 percent of the time.

Additionally, the number of infected computers in the world has jumped up to 32.77 percent, according to the report, which cites Luis Corrons, technical director with PandaLabs. China has the highest infection rate, at more than 52 percent, and Turkey, Peru, Bolivia, Ecuador and Russia each have an infection rate of more than 40 percent.  

“China tops the list because there are many unpatched installations of Windows there,” Aaron said. “Some of those installations are unpatched because they are pirated or unlicensed copies of Windows.”

Getting the numbers down is no easy task.

“Phishing prosecutions almost never happen, so we are unlikely to see a reduction in cybercriminals launching phishing attacks any time soon,” Lacour said. “Spam-filters, DMARC technology, browser blocking, and other mitigation measures help to fight phishing, but phishers respond by launching more attacks to get the same payout.”

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.