# curveswap.org — SUSPICIOUS

> Curveswap.org is linked to phishing risks and is currently offline. Avoid interaction and stay vigilant against suspicious domains.

## Summary
PhishDestroy identifies curveswap.org as a medium-risk phishing domain that aimed to deceive users by mimicking legitimate services. Such sites attempt to steal personal information or login credentials. This domain was flagged on multiple blocklists and has been taken offline to prevent further harm.

The phishing strategy behind curveswap.org involved tricking visitors into entering sensitive data under the guise of a trusted platform. Attackers often use such fake sites to harvest passwords, financial details, or other private information for malicious use.

If someone visited curveswap.org, they should immediately cease any communication and avoid sharing personal data. Running a security scan and changing passwords for related accounts is strongly recommended to minimize potential damage.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 0)
- Target brand: Curve
- Page title: Curve Swap

## Domain Intelligence
- Registered: 2026-03-01 23:00:02
- IP: 172.67.186.66
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 3 vendors flagged
  Vendors: ["ADMINUSLabs", "Fortinet", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/01981379-fe99-7549-8f4d-19ae5dff62a8.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/54d176c8-9653-48e9-9b8a-b514b87d9cb2
- PhishDestroy: https://phishdestroy.io/domain/curveswap.org/
- LLM endpoint: https://phishdestroy.io/domain/curveswap.org/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/curveswap.org/
Last updated: 2026-03-19