The FBI has released a comprehensive list of approximately 42,000 phishing domains linked to LabHost, a phishing-as-a-service (PhaaS) platform. LabHost facilitated cybercriminals in impersonating over 200 organizations to steal personally identifiable information (PII), login credentials, and credit card data. This disclosure aims to help organizations and individuals recognize and defend against threats associated with these malicious domains. The FBI’s release includes indicators of compromise related to LabHost’s operations, highlighting the scale and sophistication of this cybercrime infrastructure.