The APWG eCrime Exchange (eCX) is the oldest and most trusted repository developed specifically to exchange threat data about common cybercrime events such as phishing. The APWG’s member organizations contribute new data, and extract data programmatically to inform their products and services – as well as to drive their own security applications and forensic routines.
The eCX offers a RESTful API for fast and easy use in a programming environment and a Web UI for researchers and responders to query data and submit reports.
Submitting data into the eCX helps protect both your organization’s users and the wider public. Simply submit new data, and it will be available to other eCX users, including browser developers and antivirus vendors who use the data to block phishing and responder organizations who work to prevent attacks and to take down current attacks. Pull data out, and use it in your own security products and research. All entries are timestamped and tagged, and fresh data flows in continuously.
The eCX and its progenitors have served the communities of interest since 2004.
Currently, total flow inbound to the /phish endpoint on the eCX from all member sources captures between 50,000 to 100,000 records per month from a few dozen institutions (many reporting on behalf of any number of enterprises). As importantly, Arizona State University researchers found, in recent research that eCX was alone in its class in one keystone metric: reports lodged at /phish on the eCX generated the highest level of crawler traffic of any entity.