2020 was a record year for phishing sites

News
By
published

Google detected 2.11m phishing sites last year

Hook on Keyboard
(Image credit: wk1003mike / Shutterstock)

The number of phishing sites created last year reached a record-high as cybercriminals looked to capitalize on the pandemic as well as the unprecedented number of employees working from home.

According to a new investigation from Atlas VPN, 2.11m phishing sites were detected by Google in 2020 which represents a 25 percent increase compared to 2019 when the search giant discovered 1.69m malicious domains.

Cybercriminals create phishing websites in such a way that they appear to be legitimate and often mimic other popular sites and online services. The end goal though is to trick users into entering their credentials and other private information which is then sold on the dark web or used in subsequent attacks.

At the beginning of the last decade, phishing sites were declining with Google only detecting 69,254 such sites in 2011. However, as the decade progressed, there was a significant increase in phishing sites beginning in 2015 with 272,109 sites created. The number of phishing sites continued to increase in 2016 and 2017 before reaching 1.1m created in 2018.

Record year for phishing

The uncertainty created by the pandemic and the lockdowns that followed created the perfect environment for cybercrime to thrive in 2020. This led to an increase in coronavirus scams and cyberattacks launched against businesses that were unsure of how to properly secure their remote workforces.

Based on data from Google, cybercriminals were most active during mid-February as well as at the start of may last year. During those times, the search giant detected over 56,000 new malicious sites per week.

In the second half of 2020 though, things became a bit more stable with around 44k phishing sites discovered per week. In total, Google detected an average of over 40k phishing sites each week last year.

In order to avoid falling victim to phishing scams, Atlas VPN recommends that users carefully check the URLs of the sites they visit, make sure every site they visit has an SSL certificate and look out for spelling and grammar mistakes on websites.

TOPICS
Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Security
Woman shocked by online scam, holding her credit card outside
Cybercriminals used vendor backdoor to steal almost $600,000 of Taylor Swift tickets
Woman using iMessage on iPhone
UK government guidelines remove encryption advice following Apple backdoor spat
Cryptocurrencies
Ransomware’s favorite Russian crypto exchange seized by law enforcement
Wordpress brand logo on computer screen. Man typing on the keyboard.
Thousands of WordPress sites targeted with malicious plugin backdoor attacks
HTTPS in a browser address bar
Malicious "polymorphic" Chrome extensions can mimic other tools to trick victims
ransomware avast
Hackers spotted using unsecured webcam to launch cyberattack
Latest in News
WhatsApp
WhatsApp just made its AI impossible to avoid – but at least you can turn it off
ChatGPT vs Gemini comparison
I compared GPT-4.5 to Gemini 2.0 Flash and the results surprised me
Apple iPhone 16 Plus
Apple officially delays the AI-infused Siri and admits, ‘It’s going to take us longer than we thought’
The Meta Quest Pro on its charging pad on a desk, in front of a window with the curtain closed
Samsung, Apple and Meta want to use OLED in their next VR headsets – but only Meta has a plan to make it cheap
AMD Ryzen 9000 3D chips
AMD officially announces price and release date for Ryzen 9 9900X3D and 9950X3D processors
Google Pixel 9
There's something strange going on with Google Pixel phone vibrations after the latest update
More about security
Woman shocked by online scam, holding her credit card outside

Cybercriminals used vendor backdoor to steal almost $600,000 of Taylor Swift tickets
Cryptocurrencies

Ransomware’s favorite Russian crypto exchange seized by law enforcement
Reliance Corporate Park (RCP), Navi Mumbai

'Who wants to be a billionaire?': Millions will get app to 'build high compute AI applications' and get them deployed across India's largest phone network
See more latest
Most Popular
Reliance Corporate Park (RCP), Navi Mumbai
'Who wants to be a billionaire?': Millions will get app to 'build high compute AI applications' and get them deployed across India's largest phone network
WhatsApp
WhatsApp just made its AI impossible to avoid – but at least you can turn it off
Woman shocked by online scam, holding her credit card outside
Cybercriminals used vendor backdoor to steal almost $600,000 of Taylor Swift tickets
ChatGPT vs Gemini comparison
I compared GPT-4.5 to Gemini 2.0 Flash and the results surprised me
Brother HL-L2865DW during our review process
Brother denies claims it locked down third-party printer ink cartridges via forced firmware updates
Telo MT1
The anti-Cybertruck? This new electric pick-up is the size of a Mini and the cutest way to haul your gear
Apple iPhone 16 Plus
Apple officially delays the AI-infused Siri and admits, ‘It’s going to take us longer than we thought’
AMD Ryzen 9000 3D chips
AMD officially announces price and release date for Ryzen 9 9900X3D and 9950X3D processors
Microtik RDS2216 data server
This is Amazon's first foray in servers, and certainly not the last: MicroTik franken-router is powered by the AWS Graviton 1 Arm CPU
The Meta Quest Pro on its charging pad on a desk, in front of a window with the curtain closed
Samsung, Apple and Meta want to use OLED in their next VR headsets – but only Meta has a plan to make it cheap