Scam Detective
Domain

tuta.io

First seen Feb 24, 2026

Suspicious
  • No SSL certificate
  • 1 community report from users

Campaign Intelligence

This cluster centers on 2382 connected domains tagged as PureHVNC, elf, sh. 572 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus. The connected infrastructure includes 969 phone numbers (8772427372, 1319641540, 1319641221) with 557 FTC complaints; 690 email addresses (kellymoore_64@yahoo.com, schantzsybg7@aol.com, online.motors@consultant.com). Across all linked entities, consumers have filed 2228 complaints with federal agencies. Geog...

Part of: Dropped call or no message Robocall Campaign3/17/2026

This cluster centers on 2396 connected domains tagged as 156-233-71-230, Quakbot, lnk. 586 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus. The connected infrastructure includes 969 phone numbers (8772427372, 1319641540, 1319641221) with 565 FTC complaints; 690 email addresses (kellymoore_64@yahoo.com, schantzsybg7@aol.com, online.motors@consultant.com). Across all linked entities, consumers have filed 2237 complaints with federal agen...

Part of: Lotteries, prizes & sweepstakes Robocall Campaign3/18/2026

This cluster centers on 1895 connected domains tagged as BeaverTail, RedLineStealer, password: 2026. 113 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus. The connected infrastructure includes 934 phone numbers (8772427372, 1319641540, 1319641221) with 524 FTC complaints; 683 email addresses (kellymoore_64@yahoo.com, schantzsybg7@aol.com, online.motors@consultant.com). Across all linked entities, consumers have filed 2093 complaints wit...

Part of: Medical & prescriptions Robocall Campaign2/26/2026

This cluster centers on 2416 connected domains tagged as BABADEDA, WallStealer, meterpreter. 607 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus. The connected infrastructure includes 969 phone numbers (5086371451, 9366439335, 1842506726) with 570 FTC complaints; 690 email addresses (kellymoore_64@yahoo.com, schantzsybg7@aol.com, online.motors@consultant.com). Across all linked entities, consumers have filed 2243 complaints with federa...

Part of: Lotteries, prizes & sweepstakes Robocall Campaign3/19/2026

This cluster centers on 3287 connected domains tagged as HijackLoader, RemcosRAT, screenconnect. 617 of these domains have been flagged by threat intelligence feeds including Google Safe Browsing and URLhaus. The connected infrastructure includes 1649 phone numbers (5408463620, 8552597377, 8007873903) with 7110 FTC complaints; 143 companies (Informative LLC, HomePlus Corporation, Doral Capital Corporation) with 8547081 CFPB complaints; 807 email addresses (kellymoore_64@yahoo.com, schantzsybg7@...

Part of: Dropped call or no message Robocall Campaign3/21/2026

Details

First Seen
2/24/2026

Related Domains

No known connections to other entities yet.

Community Reports

Considering a Switch to Private Email—Custom Domain Worth It? In today's digital age, email addresses have become as essential as phone numbers for communication and identity verification. They're deeply integrated into everything from financial services to government systems and online platforms. Until now, I’ve relied on Gmail for most of these purposes. But lately, I’ve grown increasingly uneasy about trusting my personal data to large tech companies known for tracking and data monetization. I'm considering switching to privacy-centric email providers like ProtonMail, Tuta Mail, or Mailbox.org, which are more transparent and avoid scanning user emails for advertising or analytics. However, I do have a concern: the long-term availability of these services in my region. For example, ProtonMail reportedly faced legal or regulatory challenges in certain jurisdictions, raising concerns about potential service disruptions. If I register an address with provider domains like @proton.me or @tuta.io and the provider later becomes unavailable in my country or region, updating all my contact information across services could be an enormous hassle. So, I’m considering two options: 1. Should I register a custom domain and use it with one of these providers, so I can switch providers later without changing my email address? 2. Or should I stick with the provider's default domain and just hope the service remains accessible long-term? Also, I’ve heard that using a custom domain might reduce anonymity compared to using the provider's standard domains. Is that true in practice? Would appreciate any insights or advice on the trade-offs here.

317 days ago11 upvotes

Share Your Experience

What's Your Exposure?

Know your risk exposure to this message with a Thorough Analysis. It returns a detailed report covering the complaint history, your data breach exposure, related scam entities, and risk signals tied to this email message. Check the box and enter your email address now.

NordPass Stop reusing passwords across accounts

After a breach, attackers try stolen passwords on every site you use. NordPass generates and stores a unique password for each account.

Try NordPassAffiliate link. We may earn a commission.
Is tuta.io safe? Check it now | Scam Detective