New Threats
Automatically posted alerts for newly registered domains found to be suspicious or dangerous.
rektbet.xyz has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 136 days
This website, hosted on a relatively new and high-risk domain, asks for a password to access an "alpha" version of a gaming platform, which could be a tactic to collect credentials.
Key findings:
- The domain 'rektbet.xyz' is only 136 days old and uses a high-risk .xyz TLD.
- The page asks for a password to gain "Alpha Access" to a gaming platform.
- The form is configured to collect credentials, specifically a password.
maddixi.me has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 109 days
This domain is being used for malicious purposes, specifically to redirect users to phishing sites and aggressive marketing pages through deceptive social media campaigns.
Key findings:
- Domain classified as potentially malicious for phishing and redirection.
- Admin note explicitly warns of confirmed malicious cloaking and phishing.
- Domain is used in social media scam campaigns to hide malicious destinations.
- Domain is new, only 109 days old, and uses disposable infrastructure.
wtch.pro has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 103 days
This domain is impersonating Instagram by using the brand name in its subdomain, which is a common tactic used in phishing attacks.
Key findings:
- Impersonates 'instagram'
- Uses brand name in subdomain
- Domain is only 103 days old
shorten.as has been flagged as dangerous by an automated scan.
- Confidence: 91/100
- Domain age: 107 days
This link redirects to a domain known for malicious redirects and deceptive tactics, which could lead to harmful websites or unwanted software.
Key findings:
- The link redirects to 'effectivegatecpm.com', a domain flagged for malicious activity.
- The redirecting domain is associated with cloaking techniques to hide its true nature.
- The domain has been reported for hosting phishing content.
radartwo.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 98 days
This website is offering a high-value item at an unusually low price, which is a common tactic used in scam websites to entice buyers. The domain is also relatively new, which adds to the suspicion.
Key findings:
- The page advertises an "80% OFF" sale on an electric scooter, selling it for $49.99 USD, down from an original price of $859.
- The domain "radartwo.com" is only 98 days old.
- The page uses urgent language like "Today’s special event" and "We will sell at the lowest price at $49.99 * , then the price will restore to the original price of $859."
ud3vp.cc has been flagged as dangerous by an automated scan.
- Confidence: 85/100
- Domain age: 61 days
This website appears to be a cryptocurrency scam, designed to trick users into depositing funds with promises of high returns. It uses common scam tactics like offering large incentives and has a very recent registration date.
Key findings:
- Classified as a high-risk cryptocurrency scam with a DANGER-level admin note
- Domain is very new, registered only 61 days ago
- LLM identified the domain as likely gibberish, a common characteristic of scam sites
navigg.pro has been flagged as dangerous by an automated scan.
- Confidence: 80/100
- Domain age: 4 days
This website is a scam that impersonates the professional gaming team Natus Vincere (NAVI) to trick users into a fake gambling or item-opening scheme.
Key findings:
- Impersonates the well-known NAVI esports brand on an unofficial domain
- Uses a very new domain registered only 4 days ago
- Promotes a 'roulette' or 'case opening' scam common in gaming communities
vidara.so has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 40 days
This website displays a deceptive advertisement that mimics a system notification to encourage you to download unknown files.
Key findings:
- The page shows a fake 'Download is ready' pop-up designed to look like a system alert
- The site uses a newly registered domain (40 days old)
- The content appears to be a video player overlaying deceptive advertising
predict-devai.buzz has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 35 days
This website is very new and uses a high-risk domain extension, and the page content tries to trick you into clicking a link to view an "Instagram Reels" video.
Key findings:
- Domain registered only 35 days ago
- Uses a high-risk domain extension (.buzz)
- Page title is "Instagram Reels"
- Page text says "Пользователь прислал вам Reels" (A user sent you Reels) and asks you to click a link
heartvelvet.pro has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 42 days
This website promotes an 'AI Adult Game' and asks users to install an app, but it is hosted on a very new domain with a high-risk TLD, which is often used for scams.
Key findings:
- The domain is only 42 days old and uses a high-risk '.pro' TLD.
- The page promotes an 'AI Adult Game' and encourages users to install an app.
- The page claims to be 'Porn Hub Game' but is not hosted on a Pornhub domain.
expdepyapmentse.com has been flagged as dangerous by an automated scan.
- Confidence: 80/100
- Domain age: 0 days
This website is impersonating Expedia to steal your personal and payment information. It uses a fake domain name and a copied layout to trick you into entering sensitive details.
Key findings:
- The domain name is a misspelled version of the real Expedia website
- The site was registered less than 24 hours ago
- The page uses the official Expedia logo and branding without authorization
- It asks for personal information and payment details on an unofficial domain
tsrpilot.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 12 days
This page uses a blurred background and a verification check to hide its content, which is a common tactic used to bypass security scanners.
Key findings:
- The page content is intentionally blurred behind a verification box
- The initial link uses a very new domain (12 days old) to redirect users
- The site forces a robot check before showing any actual information
flurry-online.com has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 171 days
This website uses the name and logo of Flurry, a well-known mobile analytics company, but is hosted on an unofficial domain and asks for a phone number and password.
Key findings:
- Uses the branding of a known company on an unrelated domain
- Requests sensitive login information including a phone number
- The website is relatively new and lacks official company information
roblox.com.gl has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 24 days
This website is impersonating Roblox by using a similar web address, which is a common tactic used in online scams.
Key findings:
- Impersonates 'roblox'
- Uses a similar web address (tld_squatting)
- Domain is very new (24 days old)
tsk.re has been flagged as suspicious by an automated scan.
- Confidence: 69/100
- Domain age: 35 days
This website is impersonating Nextcloud, a legitimate file hosting service, and is asking for login credentials on a newly registered domain that is not associated with Nextcloud.
Key findings:
- The page title and visible text claim to be 'Nextcloud'.
- The page contains a login form asking for username and password.
- The domain 'nc.tsk.re' is newly registered (35 days old) and is not the official Nextcloud domain.
influencerplatform.app has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 17 days
This page asks for extensive personal information on a very new domain that is not officially associated with the brand it claims to represent.
Key findings:
- The page asks for your first name, last name, email, phone, date of birth, and full address.
- The website domain is only 17 days old.
- The domain 'influencerplatform.app' is not the official website for SKIMS, despite the page mentioning 'SKIMS Partner Community'.
effectivegatecpm.com has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 160 days
This domain is being used for malicious redirects and phishing, often trying to trick security systems by redirecting to legitimate sites or showing different content to scanners than to real users.
Key findings:
- Domain is classified as potentially malicious with a DANGER-level admin note.
- Confirmed use of redirect cloaking to bypass security scanners.
- Reports of phishing content hosted on sub-paths of this domain.
- High traffic rank for a very young domain, which is typical for large-scale malicious schemes.
flaxmovies.online has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 98 days
This website offers free streaming of copyrighted movies and TV shows, which is a common tactic used to lure users into clicking malicious advertisements or downloading harmful software.
Key findings:
- Offers free streaming of copyrighted content without authorization
- Uses a newly registered domain with a high-risk extension
- Potential for deceptive advertisements or malicious redirects when interacting with the player
canadianbreadsettlement.top has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 1 days
This website was registered very recently and failed to load any content, which is often a sign of a temporary or deceptive site.
Key findings:
- The domain was registered only 1 day ago
- Uses a high-risk .top domain extension
- The page failed to display any content or information
gov-sjc.life has been flagged as dangerous by an automated scan.
- Confidence: 80/100
- Domain age: 0 days
This website impersonates the Florida Department of Highway Safety and Motor Vehicles to collect personal information through a form, despite being hosted on a newly registered, suspicious domain.
Key findings:
- The website's title and content impersonate the Florida Department of Highway Safety and Motor Vehicles.
- The domain is newly registered and appears to be a random string of characters, which is highly suspicious.
- The page contains a form that could be used to collect personal information.