»

Beware of ".ICU" Fraudulent and Cloned Websites or Domain Names

 +
Beware of ".ICU" Fraudulent and Cloned Websites or Domain Names

Would you share this article with others?

Online users are asked to beware of some websites that have names ending with ".icu". This is because scammers/cybercriminals are abusing the Top Level Domain(TLD), by creating fake, fraudulent, phishing and malicious websites with names ending with ".icu". We have even seen popular websites been cloned that have names ending with ".icu", which cybercriminals use to trick their potential victims into visiting, thinking they are on the legitimate websites.

Here is an example:

Cybercriminals can clone or create a fake copy of "www.yahoo.com", call the cloned version of the website "www.yahoo.icu". Many online users who are tricked into visiting the fake website, would not notice the “.icu” at the end of the name, or may even think Yahoo is using a new website domain name. Therefore, they would think they are on the legitimate Yahoo website. But, any attempts to sign into the fake website by visitors, will result in their Yahoo usernames and passwords being sent to the cybercriminals responsible for the website, who will use the stolen credentials to hijack the visitors' email accounts, which will be used fraudulently.

Online users who think they were tricked into visiting phishing websites that steal online usernames and password, should change their passwords immediately before their accounts are hijacked and used fraudulently.

We are not saying all websites with names ending with “.icu” are dangerous. We just want online users to be aware of those fraudulent “.icu” Top Level Domain name(TLD) websites, which are being created by hackers, scammers and other cybercriminals.

Click here for a list of fake and fraudulent".icu" websites that online users should never visit.

Note: Some of the names, addresses, email addresses and telephone numbers in email samples on this website may have been impersonated.

Please share what you know or ask a question about this article by leaving a comment below. Also, check the comment section below for additional information, if there is any.

Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: info@onlinethreatalerts.com

Also, report missing persons, scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent.

If you want to quickly find answers to your questions, use our search engine.

You can help maintain Online Threat Alerts by paying a service fee. Click here to make payment.

Comments, Questions, Answers, or Reviews
(Total: 19)

To help protect your privacy, please do not post or remove, your full name, telephone number, email address, username, password, account number, credit card information, home address or other sensitive information in or from your comments, questions, or reviews.

The comments or reviews below do not necessarily reflect the views of Online Threat Alerts.

  • June 18, 2019 at 4:04 PM by info

    moskintor.icu

    specimenshortage.icu

    imposterpavement.icu

    designercupboard.icu

    ceremonyorganize.icu

    standardpredator.icu

    remove

  • June 18, 2019 at 7:02 AM by info

    businesspositive.icu

    Other fraudulent websites:

    conceala.us

    heartdiseaselie.com

    bighertdise.host

    remove

  • June 18, 2019 at 6:27 AM by info

    tractionvertical.icu

    frightenattitude.icu

    glucoprobalnce.icu

    judgmenteconomic.icu

    firstquthelth.icu

    accidentdivision.icu

    firsthelthg.icu

    discoverthreaten.icu

    hardwareparticle.icu

    subjectposture.icu

    teacherposture.icu

    ceilingterrace.icu

    thoughtglasses.icu

    symptomcompact.icu

    squeezecalorie.icu

    pyramidcomplex.icu

    remove

  • June 17, 2019 at 3:51 PM by info

    misleadhousing.icu

    posturelicence.icu

    fashionretiree.icu

    concedevariant.icu

    captureexclude.icu

    ascndnutritonls.icu

    speciessnuggle.icu

    speciessnuggle.icu

    survivbuscrd.bid

    hotrusinon.icu

    theaterpresent.icu

    volcanoevening.icu

    crdiocler7.icu

    suspectmixture.icu

    splurgegrounds.icu

    victoryrevival.icu

    haircutrelease.icu

    sweatersimilar.icu

    fortunereverse.icu

    poundend.icu

    mistart.icu

    groundsmix.icu

    compltemeldelvry.icu

    stitchsit.icu

    brainwar.icu

    dreamlie.icu

    nailpit.icu

    coolhip.icu

    steeloil.icu

    sociallaw.icu

    cornnut.icu

    lootingsum.icu

    confuseair.icu

    castlenun.icu

    baitkit.icu

    bleedsun.icu

    remove

  • June 17, 2019 at 11:41 AM by info

    texturejustify.icu is a scam.

    remove

  • May 6, 2019 at 8:33 AM by an anonymous user from San Antonio, Texas, United States

    How do we stop getting .icu mail? Roadrunner doesn't seem to care.

    remove

    • May 6, 2019 at 10:56 AM by info

      It is virtually impossible to stop spam or malicious emails. The big tech giants are trying, but once they take down the a spam server, another one is created somewhere around the world.

      And, it is not easy catching those cybercriminals, who sometimes use innocent internet users' computers to carry out their crimes. Police sometimes trace cybercrimes, but it usually go back to the same innocent internet users who are not even aware their computers were being used by cybercriminals.

      remove

  • April 9, 2019 at 11:44 PM by info

    Here is a fake Yahoo website: mail-yahoo.icu

    remove

  • February 28, 2019 at 8:48 AM by info

    dbhop.com is another fake website that being redirected from .icu website.

    remove

  • February 28, 2019 at 8:45 AM by info

    Here is another fake website: pacedull.icu

    remove

  • February 28, 2019 at 8:44 AM by info

    pacedull.icu is a fake FoxNews website.

    remove

  • February 28, 2019 at 8:43 AM by info

    Another fake website: suffergem.icu

    remove

  • February 28, 2019 at 8:42 AM by info

    solveexit.icu is another fake website claiming to sell revolutionary glasses.

    remove

  • February 28, 2019 at 8:41 AM by info

    Here is a fake Mirror.co.uk website: deepfur.icu

    remove

  • February 27, 2019 at 5:27 PM by info

    Here is a fake website: minerfine.icu

    remove

  • February 26, 2019 at 11:07 AM by info

    roadaward.icu is disguised as mirror.co.uk

    remove

  • January 15, 2019 at 2:29 PM by an anonymous user from Russellville, Kentucky, United States

    I have yet to see ANY legitimate use of the .icu domain.

    Have received well over a hundred emails claiming to be from .icu domains and with links to .icu websites.

    ALL appear to be criminal attempts.

    What is .icu?

    International Criminal Union?

    remove

  • December 1, 2018 at 10:24 PM by an anonymous user from San Diego, California, United States

    Redirected automatically from cnbc.com to luckygiftcornerin.icu/ us_facebookbox_ walmart1000_hearoriginal_ms/

    remove

  • November 28, 2018 at 9:28 AM by info

    Receieved via email:

    "Got emailed with a .icu website attachment, cloning the bbc website.

    The email is from shannonwood44@hotmail.com

    Thank you"

    remove

 Show More Comments (19)
Write Your Comment, Question, Answer, or Review
Write your comment, question, answer, or review in the box below to share what you know or to get answers. NB: We will use your IP address to display your approximate location to other users.
Your comment, question, answer, or review will be posted as an anonymous user because you are not signed in. Anonymous posts cannot be edited or deleted. Sign-in.

Beware of ".ICU" Fraudulent and Cloned Websites or Domain Names