The APWG eCrime Exchange (eCX)

The APWG eCrime Exchange is the security world’s oldest and most trusted threat data repository and data sharing platform.  The APWG’s member organizations contribute new data in, and pull data out to use every day in their products and services.  The eCX offers an API for fast and easy use.

Providing data into the eCX helps protect your organization’s users, and the wider public.  Simply report in new data, and it will be available to other eCX users, including browser manufacturers who use the data to block phishing.  Pull data out, and use it in your own security products and research.  All entries are timestamped and tagged, and fresh data flows in continuously.

The APWG eCrime Exchange is available to APWG members
Learn how to join
View the eCX API documentation
For more information:
membership@apwg.org
APWG Members
Login Here

The eCX offers five types of data:

Phishing:  The eCX receives hundreds to thousands of new, unique phishing URLs every day.  The listings include confidence scores and brand (target) tags, so you know the data’s reliable.  Learn about new attacks against hundreds of companies across the Internet, including the ones you need to protect.

Report Phishing: a repository of reported phishing emails.

Malicious IPs:  This feed contains IP addresses that have been recently observed as sources of malicious activity, such as fraudulent transactions and large-scale scanning attacks.  Use the data to manage your reputation systems, firewalls, and more.

Malicious Domains: A feed of suspected and known malicious domain names, including fake stores and fraud/identity theft sites.  Supporting data can be added and forwarded to registrar and registry operators, or other APWG members, to aid in takedowns.

Cryptocurrency:  This repository of problematic virtual currency addresses can help you identify suspicious transactions and enrich your analytic tools.  It’s high-value data for cryptocurrency exchanges, wallet providers, trading platforms, and investment funds who want to protect themselves and their customers against phishing and cybercrime.

eCX Phish Module