ScamLens analyzed mail.apple-icloud.us using 90+ threat intelligence sources and assigned a trust score of 8/100, classifying it as dangerous.
Trust Score: 8/100
Risk Level: Dangerous
This domain behaves more like an impersonation or spoofing entry point. Do not log in, pay, or call any number shown on the site before you preserve the spoofing and communication evidence.
Quick Answer
This domain behaves more like an impersonation or spoofing entry point. Do not log in, pay, or call any number shown on the site before you preserve the spoofing and communication evidence.
Positive Signals
- + Google Safe Browsing: Safe
- + HTTPS encryption supported
Concerns
- - 4 security sources flagged as suspicious
Score Breakdown
Was this assessment accurate?
mail.apple-icloud.us is confirmed malicious
Multiple threat-intelligence feeds agree this domain is dangerous. Treat any data you entered as compromised.
- Close the tab immediatelyContinued browsing increases the chance of drive-by downloads, exploit kits, or session hijacking.
- Run a full antivirus / malware scanIf the site loaded scripts, scan your device. Update your OS and browser to the latest version first.
- Change passwords for any account you enteredRotate the password and enable two-factor authentication on the real site. Watch for unauthorised charges over the next 30 days.
- Report the incidentReporting helps blocklists update faster and protects other potential victims.
Trust but verify — open this domain on unrelated security services and compare the verdict.
AI Risk Assessment
High RiskWhat matters right now
Keep the spoofing, communication, and payment evidence inside one timeline before you decide the reporting and containment order.
This domain presents multiple serious risk signals. Brand impersonation is confirmed 5: the domain closely matches apple.com with 0.85 similarity, using Apple's brand name in a suspicious subdomain structure (mail.apple-icloud.us). Two authoritative threat feeds have flagged this domain 2: openphish reports phishing activity, and shodan_internetdb reports a vulnerable host. While Safe Browsing is clean 1 and 25/27 threat feeds are clean 3, the combination of confirmed impersonation, active phishing detection, and infrastructure vulnerability creates substantial fraud risk. The .us TLD carries low abuse risk 4, but this does not mitigate the primary threats. No community reports exist [data], likely because this is a newly active or targeted phishing operation.
Recommendation
Do not access or interact with this domain. This is almost certainly a phishing site impersonating Apple services to steal credentials. Report the domain to Apple Security ([email protected]) and to OpenPhish 2. If you received communications from this domain claiming to be Apple, treat them as fraudulent. Use only official Apple domains (apple.com, icloud.com) for account access.
Sources
- Threat intelligence feeds (2 flagged)Threat intel
shodan_internetdb (VULNERABLE_HOST); openphish (phishing)
- 25/27 threat feeds responded cleanThreat intel
- TLD risk classification: .us (low risk)Analysis
Based on APWG / Spamhaus / Interisle 2024 abuse rankings
- Brand impersonation: matches "apple.com"Analysis
Powered by ScamLens AI· Check sources to verify important claims
Threat-intelligence sources
Checked across 27 sources — 4 flagged this domain
Show source breakdown
Threat-intelligence sources
Checked across 27 sources — 4 flagged this domain
- safe_browsing clean
- urlhaus clean
- cloudflare_radar clean
- cert_transparency clean
- alienvault_otx clean
- phishstats clean
- virustotal clean
- ipqs clean
- abuseipdb clean
- securitytrails clean
- phishdestroy flagged
- threatfox clean
- shodan_internetdb flagged
- phishtank clean
- urlscan clean
- rdap clean
- maltiverse clean
- dns_security clean
- wanted_domains clean
- darkweb clean
- openphish flagged
- phishing_army flagged
- scam_blocklist clean
- maltrail clean
- crypto_scam_feed clean
- hagezi_tif clean
- red_flag_domains clean
ScamLens aggregates real-time signals from 90+ commercial and open-source threat-intelligence providers including Google Safe Browsing, VirusTotal, PhishTank, URLhaus, ThreatFox, Cloudflare Radar, OTX, IPQS, GoPlus, Honeypot.is, and more. A flagged signal is evidence; the absence of flags is not proof of safety. Use the signals below alongside community reports to decide.
Advanced Scan
Comprehensive data lookup across premium sources
- Website history verification
- Detailed WHOIS information
- Reverse WHOIS association
- Traffic rank analysis
- Company registration check
AI Deep Investigation
Cross-check the story, claims, and supporting evidence before you decide
- Everything in Advanced Scan
- AI website content analysis
- AI cross-reference verification
- Claim authenticity validation
- Detailed report with evidence
Comprehensive Investigation
Full-spectrum investigation with company deep search & social intelligence
- Everything in Deep Investigation
- AI company background search
- Social media intelligence
- Detailed suspicious point analysis
- Event timeline & entity connections
This analysis is for informational purposes only and does not constitute a legal determination.
Security Sources
Domain Information
- DNSSEC
- Disabled
SSL/TLS Certificate
No data available
Redirect Chain
1 hopmail.apple-icloud.us
Status: 302Final destination
mail.apple-icloud.us
Server Information
- IP Address
- 162.251.80.247
- Hosting Provider
- PDR
- ASN
- AS46606 Unified Layer
- Server Location
- Austin, United States
- Organization
- PDR Ltd.
Related Intelligence
Technical Details (DNS / Headers / Subdomains)
DNS Records
Email Security
SPF Not Configured DMARC Not Configured| Type | Value |
|---|---|
| A | 162.251.80.247 |
HTTP Security Headers
0/6Channels / Subdomains
No data available
Community Reports
Log in to report and share your experience
Report & Take Down This Website
Impersonation / Spoofing Risk
This domain behaves more like an impersonation entry point. Preserve the spoofing and communication evidence first
If the domain is impersonating a brand, support flow, or official login, the key is to keep the domain, landing page, email, chat, and payment path inside one case package.
Recommended First
Move into the website-reporting flow
Use the reporting path first to preserve the domain, screenshots, chat trail, and payment-page evidence.
If you were affected, move into the action plan
If you already logged in, paid, installed software, or shared data, use the victim action plan to prioritize the response.
Verify the impersonated brand or entity
Confirm exactly which platform, merchant, or support identity is being spoofed.
Add the email and chat evidence
Preserve the email, support conversation, and any callback instructions together.
The results are based on multiple third-party data sources and AI models. False positives or negatives may occur. This report should not be used as the sole basis for any decision. Please verify with additional sources.
Preserve the account and payment evidence first
If you already logged in, paid, or shared data, move into the victim action plan first and then complete the formal report.
For impersonation sites, the priority is not more browsing. It is evidence preservation and loss containment.
Related Security Guides
Learn more about how to protect yourself from this type of threat.
Understanding this threat
FAQ
Is mail.apple-icloud.us safe to visit?
mail.apple-icloud.us received a trust score of 8/100 from ScamLens, indicating high risk. 3 threat intelligence sources flagged this domain as potentially dangerous. We strongly advise against visiting or sharing personal information.
Was mail.apple-icloud.us flagged by any threat databases?
mail.apple-icloud.us was flagged by 3 out of 30+ threat intelligence sources. Specifically flagged by: phishdestroy, openphish, phishing_army. The detected threat categories include: general threat.
How old is mail.apple-icloud.us?
Registration date information for mail.apple-icloud.us is not publicly available through WHOIS records, which can itself be a risk indicator.
Does mail.apple-icloud.us use HTTPS and have a valid SSL certificate?
ScamLens could not verify the SSL certificate details for mail.apple-icloud.us during this scan. Treat this as unavailable evidence, not as proof that the site is safe or unsafe.
What security headers does mail.apple-icloud.us implement?
mail.apple-icloud.us is missing important security headers: Content-Security-Policy, X-Frame-Options, X-Content-Type-Options, Strict-Transport-Security, Referrer-Policy, Permissions-Policy. Missing security headers can leave visitors vulnerable to cross-site scripting (XSS) and other web-based attacks.
What does the ScamLens community think about mail.apple-icloud.us?
No community votes or reports have been submitted for mail.apple-icloud.us yet. You can be the first to share your experience.
Where is mail.apple-icloud.us hosted?
mail.apple-icloud.us is hosted by PDR in Austin, United States (ASN: ASAS46606 Unified Layer).
What should I do about mail.apple-icloud.us?
Do not access or interact with this domain. This is almost certainly a phishing site impersonating Apple services to steal credentials. Report the domain to Apple Security ([email protected]) and to OpenPhish [2]. If you received communications from this domain claiming to be Apple, treat them as fraudulent. Use only official Apple domains (apple.com, icloud.com) for account access.
Is this report useful?
Use this report to warn others to stop logging in, paying, or contacting the listed support before they verify it.
Forward to your parents — they deserve to browse safely too.
About this analysis
This report is generated from real-time data across 90+ threat intelligence sources, combined with AI analysis and community feedback.
Learn about our scoring methodology | Last analyzed: June 25, 2026