Flagged .christmas Domains
22 domains using the .christmas extension have been flagged by threat-intelligence feeds. The .christmas extension is not specifically high-risk, but it is still used by scammers. The TLD alone does not determine whether a specific domain is safe.
Flagged .christmas Domains
22 shownFrequently Asked Questions
Are all .christmas websites scams?
No. The .christmas extension is not specifically high-risk, but it is still used by scammers. The TLD alone does not determine whether a specific domain is safe. Many legitimate sites use .christmas. This page lists only the specific .christmas domains flagged by threat-intelligence feeds — not the extension as a whole.
Why do scammers use .christmas domains?
Scammers favour cheap, fast-to-register extensions with slower abuse enforcement, because they expect the domain to be taken down within days. Registration cost and enforcement speed — not the extension's purpose — drive the choice.
How do I check if a specific .christmas site is safe?
Look it up here or on Google Safe Browsing and VirusTotal, and check its registration date with a WHOIS lookup. Very new domains imitating an established brand are a strong warning sign.
Stop the next phishing attack before you click.
NordPass autofill only triggers on real domains. Fake login pages cannot trick it into entering your credentials.