# okx-public.com — SUSPICIOUS

> Security researchers have identified okx-public[.]com as a malicious phishing site masquerading as OKX. The domain attempts to harvest crypto wallet credentials through a fake interface. This threat has been added to multiple blocklists for community protection.

## Summary
Threat Overview
The domain okx-public[.]com has been identified as a phishing website designed to impersonate OKX. This malicious site targets cryptocurrency users by creating a convincing replica of the legitimate OKX platform.
Attack Vector
The phishing site attempts to trick users into connecting their wallets or entering their seed phrases and private keys. Once captured, the attackers use these credentials to drain victims' cryptocurrency holdings.
Risk Indicators

- Domain registered on a standard TLD (com)
- Contains brand keywords associated with OKX
- Domain length: 14 characters
- Drainer Detected

Recommendations
Always access OKX through the official website. Never enter your seed phrase or private keys on any website. Use hardware wallets for additional security.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Target brand: OKX
- Page title: OKX Wallet - Community Voting Platform

## Domain Intelligence
- Registered: 2026-03-13 05:07:02
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- Country: CY
- IP: 104.21.72.79
- Nameservers: javon.ns.cloudflare.com ziggy.ns.cloudflare.com

## Detection Status
- VirusTotal: 3 vendors flagged
  Vendors: ["Fortinet", "Gridinsoft", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Live Page Content
- Meta description: Vote for token listings and earn XP rewards. Participate in decentralized community voting.
- Meta title: OKX Wallet - Community Voting Platform

### Page Text
OKX Wallet - Community Voting Platform

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce54b-e078-74db-89ba-84e76163fc5a.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/5ad0e02d-83de-4086-adc8-1ce9796b577d
- PhishDestroy: https://phishdestroy.io/domain/okx-public.com/
- LLM endpoint: https://phishdestroy.io/domain/okx-public.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/okx-public.com/
Last updated: 2026-03-14