# bidsy.net — SUSPICIOUS

> PhishDestroy detects bidsy.net as an active phishing domain under investigation. Stay vigilant and avoid interacting with this site.

## Summary
PhishDestroy has identified bidsy.net as an active domain exhibiting characteristics consistent with generic phishing activity. Though it currently lacks direct detection from major security vendors, the domain's recent creation and suspicious registration details warrant caution. Users are advised to treat bidsy.net as potentially malicious until further analysis is complete.

The domain bidsy.net was registered on November 23, 2025, through Ultahost, Inc., a registrar occasionally associated with high-risk registrations. It resolves to the IP address 159.100.6.5. Despite a clean VirusTotal scan with zero detections across 95 security engines, the domain's infrastructure and timing suggest it may be used for deceptive purposes. This aligns with a pattern where threat actors use newly created domains with low visibility to evade early detection.

Currently, bidsy.net remains under active investigation by PhishDestroy. The domain is flagged as high risk due to its phishing potential, though no confirmed incidents have been reported yet. Security professionals and users should avoid visiting or submitting any personal information to this domain. Monitoring and blocking bidsy.net in organizational network defenses are recommended to mitigate possible threats.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Page title: Home - Bidsy

## Domain Intelligence
- Registered: 2025-11-23 14:25:06
- Registrar: Ultahost, Inc.
- IP: 159.100.6.5
- Nameservers: ns1.ultahost.com ns2.ultahost.com ns3.ultahost.com ns4.ultahost.com

## Detection Status
- VirusTotal: 4 vendors flagged
  Vendors: []
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://i.ibb.co/Z61sCFf2/d744e966aa6f.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/3061beef-fbd8-4770-ac9a-a9af88221fc6
- PhishDestroy: https://phishdestroy.io/domain/bidsy.net/
- LLM endpoint: https://phishdestroy.io/domain/bidsy.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/bidsy.net/
Last updated: 2026-03-19