@hackerfactor @thedarktangent Next month we publish a malware landscape study using data from the #cybercrimeinformationcenter. We are including malicious IPs, e.g., attackware and traffic injectors. The numbers are crazy high. Your instincts are good.

@Weld To some extent, an org that's using one or more URLBLs or DBLs would get this protection; for example, the blocklists that we ingest for our #cybercrimeinformationcenter measurements list the typosquatted domains used as examples in the article.

I'd be more worried that my employees were trusting cloud drives.

My AWPG eCrime 2022 Symposium presentation on taxonomic conventions for cybercrime measurements is available at https://cybercrimeinfocenter.squarespace.com/s/The-Need-for-Clarity-Accuracy-and-Rigor.pdf

#cybercrime #phishing #malware #apwg #cybercrimeinformationcenter

Short video discusses how #phishing activity in a single address allocation made an entire #ASN look bad in our #cybercrimeinformationcenter May-July 2022 data.

World's Phishiest Neighborhoods
https://www.youtube.com/watch?v=oH0MusGmhc4

If you like this, we'll do it again for August-October

Working this week on a comment to this proposed FTC ruling on (criminal) #impersonation of government and businesses

We're providing counts of #phishing attacks against recognized brands and gov agencies (e.g., IRS) and counts of domains reported for phishing that contained brands or agency names from our #cybercrimeinformationcenter

https://www.federalregister.gov/documents/2022/10/17/2022-21289/trade-regulation-rule-on-impersonation-of-government-and-businesses