Potentially Malicious Activity
portal-xxcdqj.bond
"It exhibits strong signs of typosquatting and brand impersonation, specifically targeting WhatsApp, as confirmed by the 'wa' subdomain and pre-calculated risk signals indicating strong typosquatting and proof of intent. Further evidence includes the domain's new registration, a high-risk TLD, and a 403 Forbidden error, which is consistent with phishing sites attempting to evade analysis."
Note: This finding is based on scans of specific URLs on the domain, not necessarily the root domain itself.
URLert analyzed recent scan activity for portal-xxcdqj.bond and found 1 result.
| Status | Target URL | Time |
|---|---|---|
| Malicious | https://wa.portal-xxcdqj.bond/dmv | 1d ago |
Run a real-time investigation to understand the specific threats on any URL from this domain.
This assessment is based on automated analysis and may not be definitive.
Always verify independently before taking action.