# swap.spikey.fun — SUSPICIOUS

> swap.spikey.fun is a phishing site mimicking Google Trust Services. Flagged by 0/95 VirusTotal vendors, this domain resolves to 172.67.181.

## Summary
swap.spikey.fun is a phishing domain currently under investigation, posing as a Google Trust Services entity to deceive users into divulging sensitive information. The domain is actively operational and was created on May 08, 2025, with a false SSL certificate issued by Google Trust Services to enhance its credibility. PhishDestroy has identified this threat as part of a broader campaign targeting unsuspecting users by exploiting legitimate-looking domains.    This domain was flagged by 0 of 95 VirusTotal vendors, indicating a lack of immediate detection despite its malicious intent. It is registered through NAMECHEAP INC, resolves to IP address 172.67.181.128, and was created on May 08, 2025. The absence of detections on VirusTotal, combined with the use of a Google Trust Services SSL certificate, suggests a sophisticated attempt to bypass traditional security measures. The domain has not yet been added to major blocklists, further increasing its potential reach and harm.    Users are strongly advised to avoid interacting with swap.spikey.fun or any associated links, as it poses a significant risk of credential theft and financial fraud. Immediate actions include blocking the domain at the network level, reporting it to security vendors like VirusTotal, and warning others about this threat. Organizations should update their threat intelligence feeds to include this domain and monitor for any related infrastructure. Proactive measures, such as user awareness training and DNS filtering, are critical to mitigating the risks associated with this phishing campaign.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-05-08 15:22:03
- Registrar: NAMECHEAP INC
- IP: 172.67.181.128

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/9ed93fc9-cdb5-4bf8-a43a-2012b9315e66
- PhishDestroy: https://phishdestroy.io/domain/swap.spikey.fun/
- LLM endpoint: https://phishdestroy.io/domain/swap.spikey.fun/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/swap.spikey.fun/
Last updated: 2026-03-28