ScamLens
Brand Impersonation Warning

Lookalike Domain (apple.com)

Cached < 6hAnonymous (3/day)

Security Report for apple-icloud.us

ScamLens analyzed apple-icloud.us using 90+ threat intelligence sources and assigned a trust score of 0/100, classifying it as dangerous.

Trust Score: 0/100

Risk Level: Dangerous

This domain behaves more like an impersonation or spoofing entry point. Do not log in, pay, or call any number shown on the site before you preserve the spoofing and communication evidence.

Site Title
Account Suspended
Website meta information unavailable
HTTPS ✓
3
Checked 3 times

Quick Answer

This domain behaves more like an impersonation or spoofing entry point. Do not log in, pay, or call any number shown on the site before you preserve the spoofing and communication evidence.

Positive Signals

  • + Google Safe Browsing: Safe
  • + HTTPS encryption supported

Concerns

  • - Domain registered only 21 day ago
  • - 6 security sources flagged as suspicious

Score Breakdown

Domain Reputation 30
Newly registered
Threat Intelligence 80
14/20 safeSafeBrowsing OK
Technical Security 60
HTTPS
Community Reputation 50
No community data yet

Was this assessment accurate?
0 say Safe0 say Suspicious
What do you think?
What to do next

apple-icloud.us is confirmed malicious

Multiple threat-intelligence feeds agree this domain is dangerous. Treat any data you entered as compromised.

Confidence:High
  1. Close the tab immediately
    Continued browsing increases the chance of drive-by downloads, exploit kits, or session hijacking.
  2. Run a full antivirus / malware scan
    If the site loaded scripts, scan your device. Update your OS and browser to the latest version first.
  3. Change passwords for any account you entered
    Rotate the password and enable two-factor authentication on the real site. Watch for unauthorised charges over the next 30 days.
  4. Report the incident
    Reporting helps blocklists update faster and protects other potential victims.
Cross-check with independent scanners

Trust but verify — open this domain on unrelated security services and compare the verdict.

VirusTotalurlscan.ioGoogle Safe Browsing
How we decide thisReport this site

AI Risk Assessment

High Risk
Based on 6 sourcesUpdated 16h ago

What matters right now

Keep the spoofing, communication, and payment evidence inside one timeline before you decide the reporting and containment order.

FACT: This domain exhibits brand impersonation of apple.com with 0.85 similarity 6, placing it in a phishing risk category. FACT: Six threat feeds flagged this domain as phishing or malicious 2: virustotal, phishdestroy, openphish, and phishing_army all tagged PHISHING; maltiverse flagged SUSPICIOUS_CLASSIFICATION and BLACKLISTED; shodan_internetdb flagged VULNERABLE_HOST. FACT: The domain is only 21 days old 4, a moderate age signal that combined with impersonation strengthens the threat profile. FACT: Google Safe Browsing returned clean 1, indicating this may be newly registered malicious infrastructure not yet indexed. FACT: The .us TLD carries low inherent risk 5, but this does not mitigate the impersonation and multiple feed signals. INFERENCE: The convergence of brand impersonation, 6 independent threat feed flags, and recent registration strongly suggests active phishing infrastructure targeting Apple users.

Recommendation

Do not visit or interact with this domain. Do not enter credentials or personal information. Block at network level if possible. Report to Apple Security ([email protected]) and Google Safe Browsing for expedited takedown. If you received a link to this domain via email or message, report as phishing to your email provider 246.

Sources

  1. Google Safe BrowsingThreat intel

    clean

    Verify at source
  2. Threat intelligence feeds (6 flagged)Threat intel

    virustotal (PHISHING); phishdestroy (PHISHING); shodan_internetdb (VULNERABLE_HOST); maltiverse (SUSPICIOUS_CLASSIFICATION, BLACKLISTED, MALICIOUS_TAGS); openphish (phishing); phishing_army (phishing)

  3. 21/27 threat feeds responded cleanThreat intel
  4. WHOIS registration dataWHOIS

    Registered 2026-06-03T12:18:07Z (21 days ago), registrar: Dynadot Inc

  5. TLD risk classification: .us (low risk)Analysis

    Based on APWG / Spamhaus / Interisle 2024 abuse rankings

  6. Brand impersonation: matches "apple.com"Analysis

Powered by ScamLens AI· Check sources to verify important claims

Threat-intelligence sources

Checked across 27 sources — 6 flagged this domain

Show source breakdown
  • safe_browsing clean
  • urlhaus clean
  • cloudflare_radar clean
  • cert_transparency clean
  • alienvault_otx clean
  • phishstats clean
  • virustotal flagged
  • ipqs clean
  • abuseipdb clean
  • securitytrails clean
  • phishdestroy flagged
  • threatfox clean
  • shodan_internetdb flagged
  • phishtank clean
  • urlscan clean
  • rdap clean
  • maltiverse flagged
  • dns_security clean
  • wanted_domains clean
  • darkweb clean
  • openphish flagged
  • phishing_army flagged
  • scam_blocklist clean
  • maltrail clean
  • crypto_scam_feed clean
  • hagezi_tif clean
  • red_flag_domains clean

ScamLens aggregates real-time signals from 90+ commercial and open-source threat-intelligence providers including Google Safe Browsing, VirusTotal, PhishTank, URLhaus, ThreatFox, Cloudflare Radar, OTX, IPQS, GoPlus, Honeypot.is, and more. A flagged signal is evidence; the absence of flags is not proof of safety. Use the signals below alongside community reports to decide.

Advanced Scan

Comprehensive data lookup across premium sources

$2.99one-time payment
  • Website history verification
  • Detailed WHOIS information
  • Reverse WHOIS association
  • Traffic rank analysis
  • Company registration check
Recommended

AI Deep Investigation

Cross-check the story, claims, and supporting evidence before you decide

$4.99one-time payment
  • Everything in Advanced Scan
  • AI website content analysis
  • AI cross-reference verification
  • Claim authenticity validation
  • Detailed report with evidence
Most Thorough

Comprehensive Investigation

Full-spectrum investigation with company deep search & social intelligence

$14.99one-time payment
  • Everything in Deep Investigation
  • AI company background search
  • Social media intelligence
  • Detailed suspicious point analysis
  • Event timeline & entity connections

This analysis is for informational purposes only and does not constitute a legal determination.

Security Sources

Google Safe Browsing
Safe
Cloudflare Radar
Safe
URLhaus (abuse.ch) Confidence: Medium
Not Listed
Certificate Transparency Confidence: Low
Not Listed
AlienVault OTX Confidence: Low
Not Listed
PhishStats Confidence: Low
Not Listed
VirusTotal Confidence: Medium
Unsafe
IPQualityScore Confidence: Low
Not Listed
AbuseIPDB Confidence: Medium
Not Listed
SecurityTrails Confidence: Low
Not Listed
PhishDestroy Confidence: High
Unsafe
ThreatFox (abuse.ch) Confidence: Low
Not Listed
Shodan InternetDB Confidence: Medium
Unsafe
PhishTank Confidence: Low
Not Listed
URLScan.io Confidence: Medium
Not Listed
RDAP Domain Registration Confidence: Low
Not Listed
Maltiverse Confidence: Medium
Unsafe
DNS Security Confidence: Medium
Not Listed
Law Enforcement Confidence: Low
Not Listed
darkweb Confidence: Low
Not Listed
OpenPhish Confidence: Medium
Unsafe
Phishing Army Confidence: Medium
Unsafe
Scam Blocklist (Jarelllama) Confidence: Low
Not Listed
Maltrail (stamparm) Confidence: Low
Not Listed
Crypto Scam Feed Confidence: Low
Not Listed
HaGeZi Threat Intelligence Confidence: Low
Not Listed
Red Flag Domains Confidence: Low
Not Listed

Domain Information

Registrar
Dynadot Inc
Created
June 3, 2026
Expires
June 3, 2027
Domain Age
21 days
DNSSEC
Disabled
Nameservers
ns2.md-79.webhostbox.net, ns1.md-79.webhostbox.net
Domain Status
client transfer prohibited server transfer prohibited

SSL/TLS Certificate

No data available

Redirect Chain

1 hop
1

apple-icloud.us

Status: 302

Final destination

apple-icloud.us

Server Information

IP Address
162.251.80.247
Hosting Provider
PDR
ASN
AS46606 Unified Layer
Server Location
Austin, United States
Organization
PDR Ltd.

Related Intelligence
Technical Details (DNS / Headers / Subdomains)

DNS Records

Email Security

SPF Configured DMARC Not Configured
Type Value
A 162.251.80.247
MX 0 mail.apple-icloud.us
NS ns2.md-79.webhostbox.net
NS ns1.md-79.webhostbox.net
TXT v=spf1 a mx include:websitewelcome.com ~all

HTTP Security Headers

0/6
Strict-Transport-Security Missing
Content-Security-Policy Missing
X-Frame-Options Missing
X-Content-Type-Options Missing
Referrer-Policy Missing
Permissions-Policy Missing

Channels / Subdomains

No data available

Community Reports

Log in to report and share your experience

...

Report & Take Down This Website

Impersonation / Spoofing Risk

This domain behaves more like an impersonation entry point. Preserve the spoofing and communication evidence first

If the domain is impersonating a brand, support flow, or official login, the key is to keep the domain, landing page, email, chat, and payment path inside one case package.

Recommended First

Move into the website-reporting flow

Use the reporting path first to preserve the domain, screenshots, chat trail, and payment-page evidence.

If you were affected, move into the action plan

If you already logged in, paid, installed software, or shared data, use the victim action plan to prioritize the response.

Verify the impersonated brand or entity

Confirm exactly which platform, merchant, or support identity is being spoofed.

Add the email and chat evidence

Preserve the email, support conversation, and any callback instructions together.

The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.

Preserve the account and payment evidence first

If you already logged in, paid, or shared data, move into the victim action plan first and then complete the formal report.

Open the action plan

For impersonation sites, the priority is not more browsing. It is evidence preservation and loss containment.

Related Security Guides

Learn more about how to protect yourself from this type of threat.

Phishing Scams Guide Brand Impersonation Guide

Understanding this threat

Phishing Scams

Deceptive websites and emails designed to steal login credentials, financial data, and personal information by impersonating trusted organizations.

FAQ

Is apple-icloud.us safe to visit?

apple-icloud.us received a trust score of 0/100 from ScamLens, indicating high risk. 5 threat intelligence sources flagged this domain as potentially dangerous. We strongly advise against visiting or sharing personal information.

Was apple-icloud.us flagged by any threat databases?

apple-icloud.us was flagged by 5 out of 30+ threat intelligence sources. Specifically flagged by: virustotal, phishdestroy, maltiverse, openphish, phishing_army. The detected threat categories include: general threat.

How old is apple-icloud.us?

apple-icloud.us was first registered on June 3, 2026, making it approximately 21 days old. Domains less than 30 days old are statistically more likely to be associated with fraudulent activity.

Does apple-icloud.us use HTTPS and have a valid SSL certificate?

ScamLens could not verify the SSL certificate details for apple-icloud.us during this scan. Treat this as unavailable evidence, not as proof that the site is safe or unsafe.

What security headers does apple-icloud.us implement?

apple-icloud.us is missing important security headers: Content-Security-Policy, X-Frame-Options, X-Content-Type-Options, Strict-Transport-Security, Referrer-Policy, Permissions-Policy. Missing security headers can leave visitors vulnerable to cross-site scripting (XSS) and other web-based attacks.

What does the ScamLens community think about apple-icloud.us?

No community votes or reports have been submitted for apple-icloud.us yet. You can be the first to share your experience.

Where is apple-icloud.us hosted?

apple-icloud.us is hosted by PDR in Austin, United States (ASN: ASAS46606 Unified Layer).

What should I do about apple-icloud.us?

Do not visit or interact with this domain. Do not enter credentials or personal information. Block at network level if possible. Report to Apple Security ([email protected]) and Google Safe Browsing for expedited takedown. If you received a link to this domain via email or message, report as phishing to your email provider [2][4][6].

Is this report useful?

Use this report to warn others to stop logging in, paying, or contacting the listed support before they verify it.

Forward to your parents — they deserve to browse safely too.

About this analysis

This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.

Learn about our scoring methodology | Last analyzed: June 25, 2026

All Dynadot Inc domains All PDR domains

Other domains registered with Dynadot Inc

Other domains on the same server