# bitget-activity.com — SUSPICIOUS > bitget-activity.com impersonates Bitget to steal credentials. Resolves to 172.67.200.148. Avoid entering sensitive data. ## Summary PhishDestroy identifies bitget-activity.com as an active brand impersonation domain targeting Bitget users. The domain was flagged for mimicking official Bitget promotional activities, likely to harvest login credentials or financial data under false pretenses. Current status remains under investigation as security teams evaluate additional indicators of compromise. This domain was flagged by 0 of 95 VirusTotal vendors during initial analysis, indicating it has not yet been widely recognized as malicious. It is registered through Hello Internet Corp and resolves to IP address 172.67.200.148 using a Let’s Encrypt SSL certificate. The domain was created on March 13, 2026, suggesting a very recent deployment aimed at exploiting unsuspecting users during peak trading or promotional periods. As of now, no public blocklists include this domain, and trust scores remain unassessed due to its newness. Given the active impersonation of a major cryptocurrency exchange and the absence of widespread detection, users should immediately avoid interacting with bitget-activity.com. Verify all URLs by cross-checking against Bitget’s official domains (e.g., bitget.com) before clicking or entering credentials. Security teams are advised to block the domain at the network level, monitor for associated IP traffic, and report the domain to Hello Internet Corp and relevant threat intelligence platforms to expedite remediation. Proactive user education on domain verification and phishing awareness remains critical to prevent credential theft and financial loss. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: Bitget ## Domain Intelligence - Registered: 2026-03-13 11:58:51 - Registrar: Hello Internet Corp - IP: 172.67.200.148 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/fbf62792-ca79-41da-8ceb-f695fa000df1 - PhishDestroy: https://phishdestroy.io/domain/bitget-activity.com/ - LLM endpoint: https://phishdestroy.io/domain/bitget-activity.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/bitget-activity.com/ Last updated: 2026-03-23