# jordaneta-coinbase.netlify.app — SUSPICIOUS

> jordaneta-coinbase.netlify.app flagged for Coinbase impersonation and social engineering risks. Stay vigilant and avoid interaction until investigation.

## Summary
PhishDestroy identifies jordaneta-coinbase.netlify.app as a suspicious domain impersonating the Coinbase brand. Although VirusTotal currently detects no malware or phishing signatures, Google Safe Browsing classifies the domain under social engineering threats, indicating potential deceptive intent. The domain, created recently on March 12, 2026, raises concerns due to its fresh registration and brand mimicry, a common tactic in phishing campaigns.

From a technical standpoint, the domain resolves to the IPv6 address 2a05:d014:58f:6200::259 and is hosted on the Netlify platform, which is frequently used for legitimate sites but can also be exploited for fraudulent purposes. Despite the absence of malware detections, the domain appears on two security blocklists, reinforcing suspicion. The page title reported as "Site not found" suggests the domain may not yet serve active content or is under preparation, but its use of the Coinbase brand name signals a high risk of future exploitation.

Currently, the threat status remains under investigation. Users are advised to exercise caution and avoid engaging with jordaneta-coinbase.netlify.app until further analysis confirms its safety. Given the social engineering flag and blocklist appearances, it is prudent to monitor this domain closely and report any suspicious activity. Organizations should consider blocking this domain in their security policies and educate users on recognizing brand impersonation attempts.

## Threat Details
- Verdict: SUSPICIOUS
- Site status:  (HTTP ?)
- Target brand: Coinbase
- Page title: Site not found

## Domain Intelligence
- Registered: 2026-03-12 13:07:01
- IP: 2a05:d014:58f:6200::259
- IP Country: DE
- IP City: Frankfurt am Main
- IP Org: AS16509 Amazon.com, Inc.
- SSL Issuer: DigiCert Inc / DigiCert Global G2 TLS RSA SHA256 2020 CA1

## Detection Status
- VirusTotal: 0 vendors flagged
  Vendors: []
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce80a-4315-7172-b562-153b7f0228d6.png
- PhishDestroy: https://phishdestroy.io/domain/jordaneta-coinbase.netlify.app/
- LLM endpoint: https://phishdestroy.io/domain/jordaneta-coinbase.netlify.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/jordaneta-coinbase.netlify.app/
Last updated: 2026-03-19