Beware of ".ICU" Fraudulent and Cloned Websites or Domain Names

Beware of ".ICU" Fraudulent and Cloned Websites or Domain Names

Would you share this article with others to help inform them?

Online users are asked to beware of some websites that have names ending with ".icu". This is because scammers/cybercriminals are abusing the Top Level Domain(TLD), by creating fake, fraudulent, phishing and malicious websites with names ending with ".icu". We have even seen popular websites been cloned that have names ending with ".icu", which cybercriminals use to trick their potential victims into visiting, thinking they are on the legitimate websites.

Please continue reading below.

Here is an example:

Cybercriminals can clone or create a fake copy of "www.yahoo.com", call the cloned version of the website "www.yahoo.icu". Many online users who are tricked into visiting the fake website, would not notice the “.icu” at the end of the name, or may even think Yahoo is using a new website domain name. Therefore, they would think they are on the legitimate Yahoo website. But, any attempts to sign into the fake website by visitors, will result in their Yahoo usernames and passwords being sent to the cybercriminals responsible for the website, who will use the stolen credentials to hijack the visitors' email accounts, which will be used fraudulently.

Online users who think they were tricked into visiting phishing websites that steal online usernames and password, should change their passwords immediately before their accounts are hijacked and used fraudulently.

We are not saying all websites with names ending with “.icu” are dangerous. We just want online users to be aware of those fraudulent “.icu” Top Level Domain name(TLD) websites, which are being created by hackers, scammers and other cybercriminals.

Click here for a list of fake and fraudulent".icu" websites that online users should never visit.

Note: Some of the names, addresses, email addresses and telephone numbers in email samples on this website may have been impersonated.

Please share what you know or ask a question about this article by leaving a comment below. Also, check the comment section below for additional information, if there is any.

Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: info@onlinethreatalerts.com

Also, report missing persons, scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent.

If you want to quickly find answers to your questions, use our search engine.

You can help maintain Online Threat Alerts by paying a service fee. Click here to make payment.

Comments, Questions, Answers, or Reviews
(Total: 12)

To help protect your privacy, please do not post or remove, your full name, telephone number, email address, username, password, account number, credit card information, home address or other sensitive information in or from your comments, questions, or reviews. Also, anonymous posts cannot be deleted or edited, and when you make a post, we will use your IP address to display your approximate location to other users.

Please continue reading below.

The comments or reviews below do not necessarily reflect the views of Online Threat Alerts.

  • Apr 9, 2019 at 11:44 PM by info

    Here is a fake Yahoo website: mail-yahoo.icu


  • Feb 28, 2019 at 8:48 AM by info

    dbhop.com is another fake website that being redirected from .icu website.


  • Feb 28, 2019 at 8:45 AM by info

    Here is another fake website: pacedull.icu


  • Feb 28, 2019 at 8:44 AM by info

    pacedull.icu is a fake FoxNews website.


  • Feb 28, 2019 at 8:43 AM by info

    Another fake website: suffergem.icu


  • Feb 28, 2019 at 8:42 AM by info

    solveexit.icu is another fake website claiming to sell revolutionary glasses.


  • Feb 28, 2019 at 8:41 AM by info

    Here is a fake Mirror.co.uk website: deepfur.icu


  • Feb 27, 2019 at 5:27 PM by info

    Here is a fake website: minerfine.icu


  • Feb 26, 2019 at 11:07 AM by info

    roadaward.icu is disguised as mirror.co.uk


  • Jan 15, 2019 at 2:29 PM by an anonymous user from Russellville, Kentucky, United States

    I have yet to see ANY legitimate use of the .icu domain.

    Have received well over a hundred emails claiming to be from .icu domains and with links to .icu websites.

    ALL appear to be criminal attempts.

    What is .icu?

    International Criminal Union?


  • Dec 1, 2018 at 10:24 PM by an anonymous user from San Diego, California, United States

    Redirected automatically from cnbc.com to luckygiftcornerin.icu/ us_facebookbox_ walmart1000_hearoriginal_ms/


  • Nov 28, 2018 at 9:28 AM by info

    Receieved via email:

    "Got emailed with a .icu website attachment, cloning the bbc website.
    The email is from shannonwood44@hotmail.com

    Thank you"


 Show More Comments (12)
Write Your Comment, Question, Answer, or Review
Write your comment, question or review in the box below to share what you know or to get answers. Please revisit after an hour or more to view reponses or answers to you questions.

Your comment, question or review will be posted as an anonymous user because you are not signed in. Sign-in.