# bitvavonvs.top — MALICIOUS

> Warning: bitvavonvs.top is a high-risk phishing domain impersonating Bitvavo. Avoid interaction as it is flagged for social engineering and taken offline.

## Summary
PhishDestroy identifies bitvavonvs.top as a high-risk brand impersonation domain targeting users of the cryptocurrency exchange Bitvavo. This domain is designed to deceive visitors by mimicking Bitvavo’s branding and page title, potentially to steal sensitive login credentials or personal information. Brand impersonation attacks like this pose significant risks due to their ability to exploit user trust and lead to financial or data loss.

The domain bitvavonvs.top was created recently on February 21, 2026, and resolved to the IP address 182.16.10.130. It was registered through Dynadot LLC and has been flagged by Google Safe Browsing for social engineering activities. VirusTotal analysis indicates that 11 out of 95 security vendors detect malicious attributes associated with this domain. Additionally, bitvavonvs.top appears on at least one known security blocklist. Notably, the domain has since been taken offline, reducing immediate exposure but still warranting caution.

Users are strongly advised to avoid accessing bitvavonvs.top or providing any personal information if encountered. Always verify website URLs carefully and access cryptocurrency platforms only through official channels. Utilizing security solutions that incorporate domain reputation services can help identify and block such phishing attempts. Reporting suspicious domains to security databases supports broader community protection against evolving impersonation threats.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Target brand: Bitvavo
- Page title: Bitvavo

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Dynadot LLC
- Country: US
- IP: 182.16.10.130
- IP Country: HK
- IP City: Tung Chung
- IP Org: AS45753 Netsec Limited
- Nameservers: ["ns1.dyna-ns.net.", "ns2.dyna-ns.net."]
- SSL Issuer: none

## Detection Status
- VirusTotal: 11 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Lionic", "Seclookup", "Sophos", "VIPRE"]
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/01992fd5-5aac-7330-9dc0-bdc8488959e9.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/41e8c684-67dd-4005-987a-17f9839e6fe8
- PhishDestroy: https://phishdestroy.io/domain/bitvavonvs.top/
- LLM endpoint: https://phishdestroy.io/domain/bitvavonvs.top/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/bitvavonvs.top/
Last updated: 2026-03-19