TLD Threat Intelligence

Flagged .app Domains

521 domains using the .app extension have been flagged by threat-intelligence feeds. The .app extension is not specifically high-risk, but it is still used by scammers. The TLD alone does not determine whether a specific domain is safe.

521
Flagged Domains
30
Avg Risk Score
Jul 5
Last Flagged

Flagged .app Domains

60 shown
DomainLast Seen
moonpay-commerce-5jacj9p4a-heliofi.vercel.app Jul 5 moonpay-commerce-p1n7nv04q-heliofi.vercel.app Jul 5 moonpay-commerce-o8bjttdzi-heliofi.vercel.app Jul 5 moonpay-commerce-p197ibwvq-heliofi.vercel.app Jul 5 moonpay-commerce-dcla69ceg-heliofi.vercel.app Jul 5 moonpay-commerce-git-henryharris-com2-1748-heliofi.vercel.app Jul 5 moonpay-commerce-nh8cagtat-heliofi.vercel.app Jul 5 moonpay-commerce-git-henryharris-com2-1363-heliofi.vercel.app Jul 5 moonpay-commerce-gqlf07hkp-heliofi.vercel.app Jul 5 moonpay-commerce-17unme5eo-heliofi.vercel.app Jul 5 moonpay-commerce-jql3k2i1g-heliofi.vercel.app Jul 5 moonpay-commerce-6xnwbvw2o-heliofi.vercel.app Jul 5 moonpay-commerce-j0m62jhpy-heliofi.vercel.app Jul 5 moonpay-commerce-61iaa4ldn-heliofi.vercel.app Jul 5 faraz-khan-booking-com-clone-react-project-1-jza6qqtrfilv.vercel.app Jul 5 moonpay-commerce-git-kristammoffett-culkin-com2-3c5240-heliofi.vercel.app Jul 5 moonpay-commerce-git-henryharris-com2-1636-heliofi.vercel.app Jul 5 moonpay-commerce-git-fix-com2-1732-deposit-activ-992e83-heliofi.vercel.app Jul 5 moonpay-commerce-8nbxkcgb9-heliofi.vercel.app Jul 5 encouraging-selfie-733175.framer.app Jul 5 interactive-circumstances-056399.framer.app Jul 4 flixclone-hummingbird-b93cae.netlify.app Jul 4 server-site--taffomersidb.replit.app Jul 3 juy-oubv.wasmer.app Jul 3 interface-instagram-one.vercel.app Jul 3 web-testing-dev-entry-gateway-uniswap.vercel.app Jul 3 uni-lab-rosy.vercel.app Jul 3 sucursalpersonasvirtual.vercel.app Jul 3 flow-web3-sig-claim-demo.vercel.app Jul 3 jub-ytfde.wasmer.app Jul 3 kvw-bgdxc.wasmer.app Jul 3 kvx-hfdes.wasmer.app Jul 3 hwq-hyrws.wasmer.app Jul 3 admin.n19tk.app Jul 2 n19tk.app Jul 2 more-lily-891330.framer.app Jul 2 zn-prosucts-made-in-chinna.netlify.app Jul 2 angelic-food-523097.framer.app Jul 2 crackaf-bubbles-frontend.vercel.app Jul 1 visit-bridge-trzor.typedream.app Jul 1 json-trezor-wallet-frontend.vercel.app Jul 1 allianz-seguros.vercel.app Jul 1 help-m-lives--ledgre__download.typedream.app Jul 1 usbankreplica.vercel.app Jul 1 bet808.app Jul 1 gbwhata.app Jun 24 trezor-suite-connect-en.typedream.app Jun 24 bell-self-service.vercel.app Jun 24 googlelogin-dpir7e75t8ba.edgeone.app Jun 24 clientesbhd.up.railway.app Jun 24 instagram-clone-teal-five.vercel.app Jun 24 welcome-trezor-io-x-auth.typedream.app Jun 24 xfriji6dhseiqnw-ssbhsfaqtubgebnpmadlv7pg.vercel.app Jun 24 web-git-herman-cons-1985-responsive-web-changes-uniswap.vercel.app Jun 24 dpdsuivicolisschweiz.vercel.app Jun 24 viasflowblog.vercel.app Jun 24 135tyesy.vercel.app Jun 24 pichinchaapp.netlify.app Jun 24 m.365365g.app Jun 24 bancolombia-creditovirtual-co.netlify.app Jun 24

Frequently Asked Questions

Are all .app websites scams?

No. The .app extension is not specifically high-risk, but it is still used by scammers. The TLD alone does not determine whether a specific domain is safe. Many legitimate sites use .app. This page lists only the specific .app domains flagged by threat-intelligence feeds — not the extension as a whole.

Why do scammers use .app domains?

Scammers favour cheap, fast-to-register extensions with slower abuse enforcement, because they expect the domain to be taken down within days. Registration cost and enforcement speed — not the extension's purpose — drive the choice.

How do I check if a specific .app site is safe?

Look it up here or on Google Safe Browsing and VirusTotal, and check its registration date with a WHOIS lookup. Very new domains imitating an established brand are a strong warning sign.

🔐Security Partner

Stop the next phishing attack before you click.

NordPass autofill only triggers on real domains. Fake login pages cannot trick it into entering your credentials.

Try NordPass →