Scam Campaign Report: Interconnected Fraud Network Involving Debt Collection, Cryptocurrency, and Domain Spoofing
This report details a cluster of six connected entities — four domains and two financial services companies — linked through co-reporting patterns and consumer complaints. The entities include scam-detector.com (registered January 7, 2011, via GoDaddy.com, LLC), mintbase.io, whois.com, and sertexity.com (registered December 3, 2025, via Registrar of Domain Names REG.RU LLC, a Russia-based registrar). The two companies implicated are ACCOUNT SERVICES INC., a debt collection firm carrying 8 CFPB complaints, and The Money Company, a payday loan operation with 2 CFPB complaints. The presence of a domain registered through REG.RU LLC with a future-dated registration of December 2025 is a notable technical anomaly warranting attention.
The strongest relationship in this cluster is between ACCOUNT SERVICES INC. and scam-detector.com, which carry a co-reporting confidence score of 0.85 — the highest in the dataset. This indicates that consumers who encountered ACCOUNT SERVICES INC. frequently referenced or reported scam-detector.com in the same context, suggesting that the domain may have been used in outreach, impersonation, or validation attempts tied to the debt collection activity. The Money Company shares a lower but still notable co-reporting relationship with scam-detector.com at a confidence of 0.35, suggesting some overlap in the consumer complaints filed against the payday loan company and activity associated with that domain.
Sertexity.com appears across multiple co-reported pairings with scam-detector.com and whois.com, all at a confidence level of 0.20. A community post on r/CryptoScams specifically identifies Sertexity as the subject of a crypto arbitrage scam, with at least one upvoted post noting that the name of the alleged scheme is less important than the underlying mechanics. This pattern is consistent with cryptocurrency fraud operations that rotate branding while preserving infrastructure. The domain's registration through REG.RU LLC, a registrar frequently associated with low-accountability registrations, and its anomalous 2025 registration date further elevate its risk profile. Mintbase.io, a blockchain-related domain, is co-reported with scam-detector.com at a confidence of 0.30 across two separate report instances, suggesting possible use in cryptocurrency-related fraud outreach.
A community post with 5 upvotes directly names an individual identified as Rich Bowman and lists three phone numbers: 567-712-1898, 419-224-3389 (described as associated with a whois.com-registered domain), and 419-930-5456 (described as a robocall recording number). This represents a rare case of personally attributed contact information surfacing within the cluster, linking the whois.com domain to active robocall infrastructure. A separate community submission describes a Regional Representative Opportunity scheme distributed from a Hotmail account and marked urgent, a classic social engineering pattern used in advance-fee and money mule recruitment fraud. These reports suggest consumers in the 419 area code region of northwestern Ohio may be among the targeted populations.
Consumers who are contacted by any entity associated with this cluster should take the following precautions. Do not click links in unsolicited messages and do not provide personal, financial, or cryptocurrency account information to unknown parties. If you receive a robocall or suspicious debt collection call, hang up immediately and do not call back numbers provided in the message. To verify whether a company is legitimate, check its standing with the Consumer Financial Protection Bureau at consumerfinance.gov and review its complaint history. Domain registration details can be checked via publicly available WHOIS tools, and suspicious domains or numbers can be cross-referenced at sites such as the Better Business Bureau Scam Tracker. File complaints about fraudulent calls or messages with the Federal Trade Commission at reportfraud.ftc.gov and with the Federal Communications Commission at fcc.gov/consumers/guides/filing-informal-complaint.
This cluster represents a moderate to elevated threat level. The combination of active CFPB complaints against two financial services companies, a newly registered domain through a high-risk registrar, documented robocall infrastructure, cryptocurrency fraud activity, and named personal attribution in community reports indicates a multi-vector fraud operation rather than isolated incidents. Recommended next steps include monitoring sertexity.com for additional consumer harm reports given its recent registration, referring the ACCOUNT SERVICES INC. complaint pattern to relevant state attorneys general given its 8 CFPB complaints, and flagging the phone numbers 419-224-3389 and 419-930-5456 to the FCC for robocall investigation.