Anti-Phishing Working Group: 47 percent of phishing attacks were via hacked hosting providers. Phishers used 89,748 unique domain names in the second half of 2012, up from 64,204 in the first half of the year. Some 611 organizations were spoofed, including banks, e-commerce sites, social networks, ISPs, online gaming. More than 80 percent of malicious domain registrations were in the.com,.tk, and.info domains. The APWG attributes to the virtual server breaches by phishers.”]
Source: https://www.darkreading.com/attacks-breaches/phishers-hack-hosting-providers-to-launch-mass-attacks