We are PhishDestroy, a global volunteer community engaged in a direct war on cybercrime. Since our inception, we’ve destroyed over 500,000 phishing domains. Our mission goes beyond simple takedowns — we actively assist in investigations, dismantle criminal infrastructures, and expose malicious actors. Everything we do is focused on delivering lasting, measurable damage to the phishing ecosystem.
Operational Methodology: Automation, Accuracy, and Scale
Our model combines community reporting with automated detection systems and precision analytics.
Custom-built parsers scan SEO search results and Google Ads for phishing indicators.
Identified threats are automatically submitted to 50+ antivirus vendors, maximizing global impact.
We maintain a false-positive rate below 0.5%, with over 100,000 validated reports — proving our systems are not just fast, but highly accurate.
🔗 Live infrastructure:
Public database (auto-updated):
https://github.com/phishdestroy/destroylist
Archived reports from banned X account (140K+ threats):
https://github.com/phishdestroy/x-twitter-archive-CarlyGriggs13
Real-time alerts:
https://t.me/PhishDestroyAlerts
Mastodon updates:
https://mastodon.social/@phishdestroy
Open Intelligence: Community Reporting and Trust System
We encourage public participation through our secure bot:
Report phishing via 👉 https://t.me/PhishDestroy_bot
Every report is checked automatically.
Verified users achieving 100 accurate reports are granted “trusted” status, allowing direct submissions without moderation.
To protect whistleblowers, we intentionally do not store any user data — ensuring full anonymity and eliminating legal/data breach risks.
📉 Our bot also features a live “damage counter”, estimating financial losses inflicted on scammers — based on average domain value and promo costs (~$15/domain for cryptoscam setups).
Ecosystem Allies and Enablers
We work hand-in-hand with infrastructure providers committed to cybersecurity, including:
GoDaddy, Hostinger, Squarespace, IONOS, and especially Namecheap — whose 24/7 abuse team has helped us rapidly eliminate 30,000+ malicious domains.
Unfortunately, some providers like Nicenic and Cosmotown consistently ignore abuse reports, effectively acting as safe havens for cybercriminal operations. These platforms remain ongoing targets in our efforts.
Criminal Retaliation: Confirmation of Impact
Our effectiveness has triggered backlash from organized actors
DDoS attacks
Coordinated smear and takedown campaigns
Mass-reporting of our social media infrastructure
In one such attack, our X (Twitter) account with 140,000+ documented phishing reports was permanently suspended.
We maintained partial backup:
🔗 https://github.com/phishdestroy/x-twitter-archive-CarlyGriggs13
We interpret this not as disruption, but as proof of impact. Criminals are trying to erase their tracks — we are ensuring their traces stay permanent.
Evidence, Not Just Takedowns
Takedowns are only the first step. Preserving evidence is our core priority:
Every detected domain is archived via public scanners to capture full site fingerprints.
We ensure each operation leaves a digital record, immune to deletion by attackers.
These archives support investigations, attribution, and prosecution.
While scammers wipe traces, we make them permanent.
Legal Status: Open, Volunteer-Based, and Transparent
We are a non-profit, volunteer collective — not a company, not a legal entity, and not affiliated with any government.
We publish all reports and evidence openly:
GitHub, Telegram, Mastodon, and real-time scanning tools.
Nothing is hidden or stored privately. Our transparency is intentional — it protects us and empowers others.
In major investigations (actor attribution, financial tracing, infrastructure mapping), we formally transfer full evidence packages to law enforcement or CERT teams.
All such transfers are done in full legal compliance and only when actionable intelligence is verified.
We do not store any personal data of our contributors. This protects both us and them from retaliation or compromise.
We’re not here to police the internet — we’re here to document and destroy malicious operations, and support those with legal authority to act.
Call to Action: Collective Resistance Against Fraud
This is not a fight for a few. It’s a collective responsibility.
If you witness a phishing attempt — report it.
If you were defrauded — don’t stay silent.
Losing money to fraud funds criminal infrastructure.
Every voice, every post, every report contributes to takedowns and prosecution.
Join Us
🔗 Website: https://phishdestroy.io
🧾 Public DB: https://github.com/phishdestroy/destroylist
📢 Alerts: https://t.me/PhishDestroyAlerts
📡 Mastodon: https://mastodon.social/@phishdestroy
📮 Report via bot: https://t.me/PhishDestroy_bot
We don’t ask for donations. We ask for action.
Together, we destroy phishing — one domain at a time.
Top comments (0)