Digital Phishnet (DPN) was developed jointly by the FBI's National Cyber-Forensics & Training Alliance, various law enforcement and industry stakeholders as a means to better collect and develop intelligence regarding the highest priority and most sophisticated phishing (identity theft) schemes. The DPN initiative also seeks to rapidly refer such matters to appropriate law enforcement and industry stakeholders for victim mitigation and subject neutralization.
DPN uses threat intelligence received from approximately 300 companies regarding phishing. Alternatively, cyber criminals will often seek to directly solicit credentials from consumers, through a variety of social engineering techniques, also appearing to come from legitimate sources.
Since April of 2006, via DPN the NCFTA has received summary details on approximately 200,000 unique phishing attacks and additional data on more than 24,000 unique phishing kits (tools used to deploy attacks). Through additional research of this data, approximately 6,000 drop accounts (cyber warehouses where criminals store stolen credentials) have been identified. As part of the DPN initiative, more than 600 investigative reports have been developed and provided to both domestic and international law enforcement to date. In addition, compromised accounts recovered to date represent more than $220 million in economic loss prevented.