# dydx.app-airdropalert.cfd — MALICIOUS

> Warning: dydx.app-airdropalert.cfd is a high-risk domain impersonating dYdX. Avoid interaction and verify official sources to protect your assets.

## Summary
PhishDestroy identifies dydx.app-airdropalert.cfd as an active high-risk brand impersonation domain targeting the dYdX brand. This domain is designed to deceive users by mimicking the legitimate dYdX platform, potentially aiming to steal sensitive information or distribute malicious content through fraudulent airdrop alerts.

Technical analysis shows that dydx.app-airdropalert.cfd was created on February 21, 2026, and resolves to IP address 142.251.167.99. The domain's page title misleadingly appears as "Google," possibly to evade casual detection. It has been flagged by 11 out of 95 security vendors on VirusTotal and is listed on three separate security blocklists, underscoring its malicious intent and confirmed threat status.

Currently, this domain remains active and poses a significant risk to users seeking information or services related to dYdX. PhishDestroy strongly recommends avoiding any interaction with dydx.app-airdropalert.cfd and verifying all communications and links through official dYdX channels. Users should remain vigilant against unsolicited airdrop notifications and report suspicious domains to security teams or trusted authorities promptly.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)
- Scam type: Airdrop Scam
- Target brand: dYdX
- Page title: Google

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- IP: 142.251.167.99
- SSL Issuer: WR2

## Detection Status
- VirusTotal: 11 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "Fortinet", "G-Data", "Lionic", "Sophos", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019a8865-cfd1-7295-9dc8-5fe9aad96e51.png
- PhishDestroy: https://phishdestroy.io/domain/dydx.app-airdropalert.cfd/
- LLM endpoint: https://phishdestroy.io/domain/dydx.app-airdropalert.cfd/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/dydx.app-airdropalert.cfd/
Last updated: 2026-03-19