This cluster centers on 2764 connected domains tagged as BeaverTail, Kaiji, fbf543. 645 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus. The connected infrastructure includes 1132 phone numbers (7638857447, 8664372914, 2157987305) with 10266 FTC complaints; 146 companies (JPMORGAN CHASE & CO., Advanced Resolution Services Inc., EVERBANK, NATIONAL ASSOCIATION) with 8616274 CFPB complaints; 298 email addresses (xxxxxxxxxxxxxxxxxxxxxxxx@vm...
Domain
www.cl.cam.ac.uk
First seen Feb 22, 2026
Suspicious
- No SSL certificate
- 28 community reports from users
Campaign Intelligence
This cluster centers on 2874 connected domains tagged as QuasarRAT, StealitStealer, pw-k53mv9bc. 652 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus. The connected infrastructure includes 1375 phone numbers (2157987305, 2025069230, 2028641298) with 14635 FTC complaints; 160 companies (JPMORGAN CHASE & CO., Advanced Resolution Services Inc., EVERBANK, NATIONAL ASSOCIATION) with 8680419 CFPB complaints; 299 email addresses (abuse@fb.com, ...
Part of: Other Robocall Campaign3/27/2026
This cluster centers on 1486 connected domains tagged as None, keylogger. 5 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus. The connected infrastructure includes 1364 phone numbers (3124141737, 3163966869, 8553892999) with 17909 FTC complaints; 170 companies (EQUIFAX, INC., TRANSUNION INTERMEDIATE HOLDINGS, INC., BANK OF AMERICA, NATIONAL ASSOCIATION) with 8747332 CFPB complaints; 187 email addresses (xxxxxxxxxxxxxxxxxxxxxxxx@vmh5.grup...
Details
Related Domains
domain
ipo.gov.uk
same infrastructuredomainwww.ukba.homeoffice.gov.uk
same infrastructuredomainjustice.gov.uk
same infrastructuredomainconnect.glos.ac.uk
same infrastructuredomainwww.gov.uk
same infrastructuredomainglos.onlinesurveys.ac.uk
same infrastructuredomainmoneyclaim.gov.uk
same infrastructuredomainco.uk
same infrastructuredomainwww.isurvey.soton.ac.uk
same infrastructureCommunity Reports
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
A recent statistic on how long phishing sites are usually operational Does anyone have one? The best I can find is this paper from 2007 ([https://www.cl.cam.ac.uk/\~rnc1/ecrime07.pdf](https://www.cl.cam.ac.uk/~rnc1/ecrime07.pdf)) Which states: *The mean lifetime of a normal* ***phishing site*** *is 61.69 hours, while for rock-****phish*** *domain the mean lifetime is 94.68 hours. Notably, for all* ***phishing*** *types, the median take-down time is much less than the average time.4 Oct 2007* Nice stat, but I could do with something that isn't 13 years old. Any help?
2049 days ago5 upvotes
Share Your Experience
What's Your Exposure?
Know your risk exposure to this message with a Thorough Analysis. It returns a detailed report covering the complaint history, your data breach exposure, related scam entities, and risk signals tied to this email message. Check the box and enter your email address now.
Proton Pass — Unique passwords for every account
After a breach, reused passwords let attackers into your other accounts. Proton Pass generates and stores a unique password for each one.
Try Proton Pass freeAffiliate link. We may earn a commission.