Skip to main content
PhishEye

Abuse reporting program

Received an abuse notice from PhishEye? This page explains who we are, what the report contains, how to verify it, and how to act on or dispute it.

Why you received a report

PhishEye Ltd (trading as PhishEye) is a digital risk protection company. On behalf of the brands we protect, we detect phishing, online fraud, and brand-impersonation sites and notify the party that controls the offending infrastructure — the hosting provider, registrar, CDN, or registry — so it can be reviewed under your acceptable-use policy or terms of service.

You received a PhishEye abuse notice because a domain or page on your service was identified as a phishing or fraud site impersonating a brand. Each notice carries a unique PhishEye Issue Number and a link to the full incident record. We provide the evidence and request review; the decision and the action remain yours.

What a PhishEye abuse report contains

FieldWhat it means
Offending URLThe exact phishing or fraud URL, defanged in the email body so it is not clickable (for example, hxxps://wqbgj[.]buzz/).
Brand impersonatedThe legitimate brand the page is impersonating, where we have identified it.
Abuse categoryPhishing, online fraud, malware, or brand impersonation.
Incident recordA link on app.phisheye.com/takedown/report/… with screenshots, timestamps, and the supporting technical evidence.
PhishEye Issue NumberThe case reference to quote in any correspondence (for example, 72001111).
Policy basisThe acceptable-use or terms-of-service provision the activity violates.

How to verify a report is genuinely from PhishEye

Fraudsters sometimes impersonate security vendors, so it is reasonable to verify before acting. A genuine PhishEye notice meets all of these:

  • It is sent from an address at @phisheye.com.
  • The incident-record link is on app.phisheye.com (path /takedown/report/…).
  • It carries a PhishEye Issue Number.
  • We never ask you for a password, payment, account credentials, or remote access — we only ask you to review a URL.
  • To confirm any report, email [email protected] with the Issue Number and we will verify it.

What we ask you to do

Review the reported URL against your acceptable-use policy and terms of service. If it violates them, the appropriate action depends on your role:

  • Hosting providers and CDNs — remove or disable the phishing content, or the account serving it. If you are a CDN in front of another origin, forwarding the report to the origin host also helps.
  • Registrars and registries — suspend or hold the domain. For a domain that exists only to phish, suspension stops every URL on it from resolving and is the strongest action available.

A short acknowledgement or status update — by reply or to [email protected] — helps us keep the case accurate and avoid duplicate notices.

Responding to or disputing a report

Replies to the notification address are logged against the case and forwarded to the analyst on duty. You can also write to [email protected] at any time — always include the PhishEye Issue Number.

Believe a report is mistaken? If the URL is a compromised legitimate site that has since been cleaned, or you consider it a false positive, tell us with the Issue Number. We re-review promptly and withdraw the report where appropriate — we would always rather correct a mistake than leave an incorrect notice standing.

Our commitments

  • We report only content we assess as genuine phishing, fraud, malware, or brand impersonation, acting on behalf of the affected brand or our customers.
  • We capture evidence passively. We do not exploit, attack, log in to, or probe a site beyond what is needed to document the abuse, and we never submit credentials to it.
  • Every report is tied to a documented incident record and a human-reviewable case — we do not send unverified, automated bulk reports.
  • We handle personal data per our Privacy policy, and our broader security practices and responsible-disclosure contact are on the Trust & security page.

Are you a targeted brand, or did you find a phishing site?

If your brand is being impersonated, PhishEye provides continuous detection and coordinated takedowns across hosts, registrars, CDNs, and blocklists — see phishing & scam protection. To check a suspicious link yourself, use the free phishing URL checker; to remove one by hand, follow how to take down a phishing website. For anything else, contact us.

Company details

PhishEye Ltd, registered in England and Wales. Registered office: 17 Hanover Square, London W1S 1BN, United Kingdom. Abuse-program contact: [email protected].