The Federal Bureau of Investigation (FBI) has just sounded the alarm on one of the largest phishing-as-a-service (PhaaS) operations to date.
In a newly released FLASH alert, the Bureau revealed a list of 42,000 phishing domains that are linked to LabHost, a now defunct cybercrime platform that operated from November 2021 until it was taken down in April 2024.
Before it was dismantled by law enforcement, LabHost had become a go-to service for cybercriminals worldwide, with a user base of around 10,000.
The service allowed these bad actors to impersonate more than 200 trusted organizations, including global banks and government agencies, in order to harvest sensitive personal and financial data from unsuspecting victims.
With the release, the FBI aims to raise awareness and arm cybersecurity professionals with actionable intelligence. The domain list serves as a critical resource for defenders and researchers seeking to identify and block malicious activity linked to the platform.
The following disclaimer is part of the press release:
Copyright © 2025 DomainGang.com · All Rights Reserved.“FBI obtained these 42,000 domain names and creation dates associated with LabHost from the backend server of the platform. FBI has not validated every domain name, and the list may contain typographical or similar errors from LabHost user input. The information is historical in nature, and the domains may not currently be malicious.”
