A REPUTATION FOR ACCURACY
Threat Feeds
Leading global organizations use Netcraft’s preeminent collection of threat intelligence feeds to power secure activity across the internet.
Actionable Intelligence at Scale
Delivering high-quality insights across 100+ attack types empowers your security team with protection that is both robust and measurably effective.
Namecheap collaborates with Netcraft, a company we identified as a leader in identifying and disrupting cybercrime.
Netcraft Supported Feeds
Netcraft’s malicious site and threat intelligence feeds are published delta with new blocks/unblocks every 5 minutes.
Scams
Website-Based
Email-Based
Infrastructure-Based
Blocking Threats to Downstream Users
Frequently Asked Questions
What makes Netcraft’s threat intelligence feeds more reliable than others?
Netcraft’s reputation for accuracy is backed by a proven false positive rate of just 0.02% — one of the lowest in the industry. With 23 billion+ proprietary data points analyzed annually and validation against 100+ attack types, our feeds deliver trusted intelligence you can act on with confidence.
How often are threat feeds updated, and why does that matter?
Our feeds are published delta every 5 minutes, reflecting new blocks and unblocks in near real-time. This rapid cadence ensures that downstream users — whether browsers, AV tools, or firewalls — are protected against emerging threats without delay.
What types of attacks are covered by Netcraft’s feeds?
Netcraft provides comprehensive coverage across website-based, email-based, and infrastructure-based threats. These include phishing, support scams, fake shops, web-inject malware, malicious email addresses, cryptominers, and more — spanning over 100 distinct attack types.
How does Netcraft ensure threats are blocked effectively for end users?
Our fraudcasting process distributes threat intelligence directly to major web browsers and security vendors. Malicious URLs are blocked at scale, protecting billions of users worldwide. We also monitor infected sites post-blocking to inform subscribers when it’s safe to restore access.
