PHISH MARKET

Dont't Get Hooked!

Phishmarket is a information security resource site for keeping you, your family, and your employees safe from phishing.

Phishmarket's first offering is a dynamic threat intelligence feed called
BAIT BUCKET

Phishing begins by offering you a fradulent email from either a well known (and trusted) company or an enticing company that inspires fear or unexpected benefits.

Below is a dynamic feed of the most popular bait on this particular day. It shows the bait company and the number of unique phishing emails using it as bait right now (updated 3 times daily.)

Bait Bucket

(raw data from phishtank.com, analysis by phishmarket.info)

Lets talk Phishing!
When you read about data breaches, identify theft, fraud, theft, and people "getting hacked" on the internet what you might not know is that 65% of all of these attacks begin with Phishing. Phishing is a fraudulent communication (usually starting with an email) that is designed to manipulate you into either giving your login and password (or other personal information) to the attacker or in getting you to click on a link that will infect your computer with malicious software (malware or a computer virus).

When a Phisher is trying to get your user credentials they usually spoof a webite that you either trust or would be of interest to you in another way. Spoofing is creating a website that looks like another website that it is not actually associated with in any way. A great example is a bank. If the Phisher can get you to believe you are actually on your bank's login page, then you when enter your user name and password into fields that allow them to capture your credentials so they can use them to login to your bank as you and take the money. As you can see if you visit the Bait Bucket part of this site (above), some of the most spoofed sites are banks, credit card companies, online financial sites, charities, and social media sites. Places most of us visit every day!