sing-in-token-op.com

Name: URL Security Scans for sing-in-token-op.com
Creator: URLert
License: https://www.urlert.com/terms

Potentially Malicious Low Traffic Unranked

URLert Intelligence Note

🚨 High-Risk Alert: Active Phishing Campaign

Risk Category: Confirmed Phishing & Credential Harvesting

URLert.com has classified the domain sing-in-token-op.com as a severe security threat. Our analysis, supported by verified community intelligence, confirms that this domain is actively engaged in deceptive activities designed to steal sensitive user information and compromise online accounts.

Targeted Phishing: Evidence indicates this domain is specifically being used to impersonate booking.com. It utilizes deceptive interfaces to trick travelers into providing their account details.
Credential Theft: The site is configured for credential harvesting, specifically targeting login credentials and authentication tokens. This poses a direct risk of unauthorized account access and potential financial fraud.
Deceptive Naming: The domain uses a common "typosquatting" or social engineering tactic, employing the phrase "sing-in-token" (a misspelling of "sign-in") to mimic legitimate authentication services.
Infrastructure Observations: The domain is currently hosted via Proton66 OOO, a provider often associated with hosting malicious or high-risk infrastructure.

Immediate Action Required: Do not visit this domain or enter any information into forms associated with it. If you have previously interacted with this site or provided your booking.com credentials, change your passwords immediately and enable two-factor authentication (2FA) on all affected accounts to prevent unauthorized access.

sing-in-token-op.com is classified as a potentially malicious site, focusing on phishing and credential theft. This domain is used for phishing and credential harvesting. It is not a legitimate service.

phishingcredential theftmalicious domain

Community Intelligence

Safe 0% Suspicious 0% Dangerous 0%

0 votes

Network Infrastructure

Historical and current IP address mappings for this domain.

IP Address / Infrastructure	Status	Subdomains	Last Seen
37.77.150.152	Active	sing-in-token-op.com	Today

37.77.150.152

Active

sing-in-token-op.com

Seen Today

Recent Threat Analysis

URLert analyzed recent scan activity for sing-in-token-op.com and found 1 result.

Status	Target URL	Type	Time
Dangerous	https://sing-in-token-op.com/		16h ago

Something wrong?

• Domain owner?

Developer API

Integrate Domain Intelligence

Access this classification data programmatically via our API.

GET /api/v1/classify?domain=sing-in-token-op.com

{
  "domain": "sing-in-token-op.com",
  "confidence": "high",
  "category": {
    "purpose": "potentially_malicious",
    "specialization": "Phishing and credential theft"
  },
  "identity": {
    "headline": "Malicious domain identified for phishing activities",
    "summary": "This domain is used for phishing and credential harvesting. It is not a legitimate service.",
    "operator": null,
    "parent_entity": null,
    "topics": [
      "phishing",
      "credential theft",
      "malicious domain"
    ]
  },
  "functions": {
    "is_ugc_platform": false,
    "is_file_host": false,
    "is_url_shortener": false,
    "is_public_idp": false,
    "is_crypto_platform": false,
    "allows_user_subdomains": false,
    "is_form_builder": false,
    "is_document_host": false
  },
  "facts": {
    "registered_date": null,
    "rank": null,
    "hosting_provider": "proton66 Proton66 OOO"
  }
}

API Documentation ↗ • View Pricing ↗