mailchimp-api.com

Risk Category: Phishing & Credential Theft

URLert.com has classified mailchimp-api.com as a high-risk domain posing a direct threat to user security. While automated scanners may initially identify this as a parked domain due to its recent registration, visual evidence confirms it is hosting a sophisticated phishing campaign designed to harvest Intuit Mailchimp credentials.

• Credential Harvesting: Visual analysis of the subdomain login.mailchimp-api.com reveals a pixel-perfect clone of the official Mailchimp login portal. This page is designed to trick users into submitting their usernames, passwords, and potentially OAuth tokens.
• Deceptive Naming: The domain utilizes a "typosquatting" technique, appending "-api" to the legitimate brand name to appear as a functional technical endpoint.
• Extreme Recency: The domain was registered only 1 day ago. Rapid deployment of high-fidelity login clones on brand-new domains is a hallmark of professional phishing operations.
• Infrastructure: The site is hosted via Evoxt Sdn. Bhd. and lacks any legitimate association with Intuit or The Rocket Science Group.

Recommendation: Do not interact with this domain or enter any credentials. If you have already submitted information on this site, change your official Mailchimp password immediately and enable multi-factor authentication (MFA). Security administrators should block this domain at the DNS and firewall levels to prevent organizational compromise.