# bonusstorm.info — SUSPICIOUS

> bonusstorm.info is a phishing site now offline. Avoid sharing personal info and verify URLs to stay safe from scams.

## Summary
PhishDestroy identifies bonusstorm.info as a generic phishing domain aimed at deceiving users into revealing sensitive information. The domain was created on February 21, 2026, signaling a recent attempt to establish fraudulent activity. Classified under low-risk phishing, it primarily targets unsuspecting users through deceptive tactics rather than sophisticated exploits.

Technical indicators reveal that bonusstorm.info was registered via a dead domain registrar, a common tactic for transient malicious sites. VirusTotal flagged the domain with minimal detection—only 1 out of 95 security vendors raised concerns—indicating a stealthy presence that evaded widespread detection. The domain was also listed on a single security blocklist, reinforcing its association with malicious intent, albeit with limited reach.

Currently, bonusstorm.info is offline, reflecting successful takedown efforts or abandonment by the threat actors. Users are advised to remain vigilant and avoid interacting with suspicious links to this domain. PhishDestroy continues to monitor such domains to provide timely alerts and protect the community from emerging phishing threats.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 0)
- Page title: bonusstorm.info

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Dynadot LLC
- Country: US
- IP: 185.43.220.19
- IP Country: NL
- IP City: Dronten
- IP Org: AS59939 WIBO Baltic UAB
- Nameservers: ["ns1.dyna-ns.net", "ns2.dyna-ns.net"]
- SSL Issuer: none

## Detection Status
- VirusTotal: 1 vendors flagged
  Vendors: ["Gridinsoft"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/01987627-5c15-755f-aeb4-7501be43eb50.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/816ff6e7-e2a9-476d-87aa-c0dc58b35bc5
- PhishDestroy: https://phishdestroy.io/domain/bonusstorm.info/
- LLM endpoint: https://phishdestroy.io/domain/bonusstorm.info/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/bonusstorm.info/
Last updated: 2026-03-19