# grok13k-cointelegraph.com — SUSPICIOUS > grok13k-cointelegraph.com impersonates Cointelegraph in an active crypto phishing scam. VirusTotal flags show 1/95 vendors detected it. Check the full report. ## Summary PhishDestroy identifies grok13k-cointelegraph.com as an active cryptocurrency-themed phishing domain designed to steal user credentials and digital assets. This site mimics legitimate crypto news sources to trick visitors into revealing sensitive information or downloading malware under the guise of exclusive token offers or wallet updates. This domain was flagged by VirusTotal with only 1 out of 95 security vendors detecting the threat as of the investigation. The domain was registered on March 21, 2026, through NameSilo, LLC, and resolves to IP address 188.114.97.3 with a Let’s Encrypt SSL certificate, attempting to appear legitimate. The recent creation date and low detection rate suggest this scam may still be in early operational phases, targeting unsuspecting cryptocurrency enthusiasts. If you visited grok13k-cointelegraph.com, immediately disconnect from the internet, scan your device for malware using reputable antivirus software, and avoid entering any credentials or cryptocurrency wallet details. Report the domain to your IT team or security provider and monitor financial accounts for suspicious transactions. Do not reuse passwords linked to this site and consider revoking any exposed API keys or secret phrases associated with crypto wallets. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-21 00:51:06 - Registrar: NameSilo, LLC - IP: 188.114.97.3 ## Detection Status - VirusTotal: 1 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/1f1011e9-9939-4cbc-8d73-a338e0b6b0ae - PhishDestroy: https://phishdestroy.io/domain/grok13k-cointelegraph.com/ - LLM endpoint: https://phishdestroy.io/domain/grok13k-cointelegraph.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/grok13k-cointelegraph.com/ Last updated: 2026-03-23