# sso-auths-bitmart-sso.webflow.io — MALICIOUS

> Avoid sso-auths-bitmart-sso.webflow.io—an active phishing site posing serious risks. Learn how this scam targets your data and stay safe.

## Summary
PhishDestroy identifies sso-auths-bitmart-sso.webflow.io as a high-risk phishing domain designed to steal sensitive user information. This site tricks users by mimicking legitimate login pages to capture credentials.

The phishing attack works by presenting a fake BitMart single sign-on interface, luring victims into submitting their usernames and passwords. The domain resolves to IP 104.18.36.248 and is flagged by multiple security vendors, confirming its malicious intent.

If you visited this site, immediately change your passwords on affected accounts and enable two-factor authentication. Run a full device scan with updated security software and remain vigilant against suspicious emails or links claiming to be from BitMart.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: Log in to your BitMart® account | BitMart® Exchange | US

## Domain Intelligence
- Registered: 2026-03-05 13:07:01
- Registrar: MarkMonitor, Inc.
- Country: US
- IP: 104.18.36.248
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: NS_NOT_FOUND
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 18 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "MalwareURL", "Netcraft", "Sophos", "Trustwave", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Live Page Content
- Meta description: Secure your cryptocurrency with BitMart! Log in to access your account, manage your assets, and trade safely on a leading global exchange platform.

### Page Text
Log in to your BitMart® account | BitMart® Exchange | US

### External Scripts
- https://d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=672ddd3a245d6bedc0254e9a
- https://cdn.prod.website-files.com/672ddd3a245d6bedc0254e9a/js/webflow.7e939bc70.js

### External Links
- https://webflow.com?utm_campaign=brandjs

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cbdf1-3c09-7304-a861-a7bad6727b86.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/sso-auths-bitmart-sso.webflow.io
- Wayback Machine: https://web.archive.org/web/https://sso-auths-bitmart-sso.webflow.io
- PhishDestroy: https://phishdestroy.io/domain/sso-auths-bitmart-sso.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/sso-auths-bitmart-sso.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/sso-auths-bitmart-sso.webflow.io/
Last updated: 2026-03-16