Netcraft Credential Baiting, also known as Marked Account Injection, is a brand protection tool that deploys honeypot credentials to track criminal activities. The system monitors how criminals interact with these planted credentials when they attempt to access customer portals. The tool tracks three primary activities: what actions criminals take when attempting to log in with the honeypot credentials, what other login attempts have been made from the same IP address or device, and where criminals attempt to send money once they gain access. This capability is designed to provide intelligence on criminal tactics and money laundering patterns. The system can identify when criminals use the marked credentials to access legitimate customer portals and track their subsequent fraudulent activities, including attempted fund transfers. The tool is part of Netcraft's broader platform that includes threat detection and takedown capabilities, threat intelligence, and digital risk protection services. It integrates with Netcraft's other detection enhancements including DMARC visualization capabilities.