# oldisgold.online — SUSPICIOUS > oldisgold.online distributes fake discount coupons via generic phishing, resolving to IP 75.2.60.5. Avoid clicking links—this domain is under active. ## Summary oldisgold.online is currently hosting an active generic phishing campaign designed to trick users into engaging with counterfeit discount coupons or promotional offers. The threat type is classified as generic phishing, indicating the operators are not impersonating a specific brand but leveraging broad deception to harvest credentials or deploy malware. The domain was registered on March 30, 2026, suggesting a recently established infrastructure likely intended for short-lived malicious campaigns. Given its active status and low detection footprint, this domain poses a latent risk to unsuspecting users who may encounter it through unsolicited emails, social media posts, or malvertising. PhishDestroy identifies this domain as high-risk due to its combination of low detection (0/95 on VirusTotal), recent domain creation date (March 30, 2026), and direct resolution to IP 75.2.60.5. The domain was registered through GoDaddy.com, LLC and secured with a Let's Encrypt SSL certificate, which may be used to lend false legitimacy. Importantly, the domain has not yet been flagged by major blocklists or threat intelligence feeds, increasing the likelihood of successful user exposure. While no known malicious payloads are currently confirmed, the absence of detection combined with active status warrants immediate caution. To mitigate exposure, users should avoid accessing oldisgold.online entirely and report any encounters to their security teams. Organizations are advised to block traffic to IP 75.2.60.5 and the domain at network and DNS levels. Additionally, monitor endpoints for anomalous behavior following any accidental visits. This domain should be prioritized in threat hunting based on its timeline and detection evasion. Given its active status and current lack of flags, proactive blocking is strongly recommended over passive monitoring. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-30 17:48:31 - Registrar: GoDaddy.com, LLC - IP: 75.2.60.5 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/fbac8882-0855-4752-ace3-1a698cf544f2 - PhishDestroy: https://phishdestroy.io/domain/oldisgold.online/ - LLM endpoint: https://phishdestroy.io/domain/oldisgold.online/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/oldisgold.online/ Last updated: 2026-03-31