█ Append-only blacklist · since 1 July 2025

Every scam domain.
Logged the moment we see it.

Name: Live Phishing Threat Data
Creator: PhishDestroy
License: https://creativecommons.org/publicdomain/zero/1.0/

This is the raw feed — the same blacklist your DNS resolver, browser extension and threat-intel pipeline pulls from. Append-only. No sanitised dashboards, no warnings, no negotiations. Volunteer-run since 2019.

Download JSON feed → Browse threats Report via bot

2 Threats Today since midnight

3,375 Threats This Week 7-day rolling

12,724 Threats This Month June 2026

127,934 Total Threats Tracked cumulative

█ Daily threat activity

Last 30 days, by detection volume.

peak: 12 Jun · 2,066 detections

Today Daily count

22 May · 80

23 May · 129

24 May · 205

25 May · 124

26 May · 0

27 May · 58

28 May · 358

29 May · 354

30 May · 640

31 May · 248

01 Jun · 952

02 Jun · 398

03 Jun · 229

04 Jun · 7

05 Jun · 0

06 Jun · 0

07 Jun · 516

08 Jun · 937

09 Jun · 667

10 Jun · 675

11 Jun · 478

12 Jun · 2,066 ← peak

13 Jun · 273

14 Jun · 332

15 Jun · 573

16 Jun · 378

17 Jun · 721

18 Jun · 511

19 Jun · 585

20 Jun · 2 (in progress)

22 May 30 May 06 Jun 13 Jun 20 Jun

Daily average 424

Peak (30d) 2,066

7-day momentum -14%

Registrars involved 1,245

01 / Featured exposés · this week

Why the registrars bury our reports.

all investigations
/news →

Retaliation 15 Apr 2026

Investigation · NameSilo

NameSilo killed our Twitter because we told the truth about them.

Two PhishDestroy X accounts locked under three shifting justifications. X's own automation cleared us in writing — the ban held anyway. Two weeks earlier we had documented NameSilo sheltering a $20M+ Monero-theft operation now under active EU criminal investigation.

9 min read · PhishDestroy Research Read exposé →

Registrar 14 Apr 2026

Investigation · Trustname (IANA #4318)

Trustname.com: "bulletproof" registrar with €120 in declared revenue.

An ICANN-accredited registrar that calls itself bulletproof in its own DNS TXT record. Estonian shell company, €120 revenue, one employee, Belarusian owners — and a week of fresh fake-Elon crypto-casino domains hidden behind its in-house privacy proxies.

14 min read · PhishDestroy Research Read exposé →

02 / Append log · destroylist

The blacklist scrolls whether you watch or not.

source: github.com/phishdestroy/destroylist
format: append-only · CC-BY-4.0

scan@phishdestroy:~/destroylist$

LIVE uptime 354d

scan@phishdestroy:~$ git log --follow list.json | head
▸ append-only blacklist · once added, an entry is never edited or removed
▸ 127,934 entries since 1 Jul 2025 · sync interval ≈ 14s
scan@phishdestroy:~$ tail -f list.json | jq

[2026-06-20 03:21:31]+ cozyvillee.webs-con.xyzOwnRegistrar, Inc.

[2026-06-20 00:39:28]+ kintara.orgGlobal Domain Group LLC

[2026-06-19 20:39:51]+ dragonflyprotocol.netNICENIC INTERNATIONAL GROUP CO., LIMITED

[2026-06-19 19:42:00]+ matildasbloombox.comGoDaddy.com, LLC

[2026-06-19 19:20:18]+ lovable-dev.aiNAMECHEAP INC

[2026-06-19 18:49:05]+ newsuit-appstart.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:47:46]+ ladgr-livedesktop.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:46:44]+ desktop-ldegr.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:46:44]+ live-ldg.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:45:27]+ us-suitesapps.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:45:25]+ bridge-trezr.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:44:43]+ apps-trzreu.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:44:43]+ live-logons.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:44:42]+ live-ledxerapp.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:44:40]+ io-ldgerlived-apps.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:44:29]+ new-started.zapier.appzapier.app

[2026-06-19 18:44:02]+ lives-ldgreapp.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:44:02]+ liveapp-leger.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:44:00]+ livestar-ldegre.wixstudio.comGoDaddy.com, LLC

[2026-06-19 18:43:56]+ livedesktop-enapp.wixstudio.comGoDaddy.com, LLC

last entry: +cozyvillee.webs-con.xyz · 57m ago showing 20 of 127,934 · view full repo →

03 / Surface analytics

Where the infrastructure hides — and what it costs you.

rolling 30-day window
auto-refresh 60s

Hall of shame · registrars

7 of 1,245 · ranked by active threats

NICENIC INTERNATIONAL GROUP CO., LIMITED

20,753

Cloudflare, Inc.

14,516

PDR Ltd. d/b/a PublicDomainRegistry.com

5,525

Gname.com Pte. Ltd.

4,624

NameSilo, LLC

4,182

DYNADOT LLC

4,137

GoDaddy.com, LLC

3,928

Top TLDs · by detections

7 of 512 TLDs · by detection count

.com44,604

.dev11,981

.app6,801

.xyz6,548

.io5,611

.net3,992

.cc3,748

04 / Latest entries

The dossier — raw, unfiltered, append-only.

20 shown · 127,934 total
sorted by detection time

grep ›

Every scam domain. Logged the moment we see it.

NameSilo killed our Twitter because we told the truth about them.

Trustname.com: "bulletproof" registrar with €120 in declared revenue.

Found one we haven't logged yet?

Every scam domain.
Logged the moment we see it.