Suspicious

Phishings targeting OpenSea

Suspicious and active websites

Phishings targeting Opensea

Suspicious and active websites

Active
2
New (7d)
0
Trend (7d)
Website
opensea.io
About
AINFT marketplace phishing. Wallet-drain pages targeting users to sign malicious transactions or list NFTs at unexpected prices.
Hosts
Amazon.com, Inc. (2)
Countries
United StatesUnited States (2)
TLS certs
WR1 (2)

Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.

Last check (UTC) First seen (UTC) URL Screenshot Flags Details
2026-05-29 19:30 2026-04-13 01:02
https://openseavxr.vercel.app
Screenshot of openseavxr.vercel.app OpenPhish Details
2026-05-29 19:30 2026-04-02 13:02
http://openseaproks007.vercel.app
Screenshot of openseaproks007.vercel.app OpenPhish urlscan Details

Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.

URL Screenshot Details
https://openseavxr.vercel.app
OpenPhish 		Screenshot of openseavxr.vercel.app Details
http://openseaproks007.vercel…
OpenPhish urlscan 		Screenshot of openseaproks007.vercel.app Details

AIHow to verify a real OpenSea URL

  • Legitimate OpenSea URLs always end in opensea.io (e.g. www.opensea.io, account.opensea.io). Anything else — including look-alike typosquats, hyphenated variations, or unfamiliar TLDs like .xyz / .top / .vip — is not OpenSea.
  • The padlock icon proves TLS is active, not that the site is safe. Free DV certificates are issued to attackers in minutes; every active site listed above has a valid TLS certificate.
  • If you got the link from email, SMS, or social media, do not click it. Open opensea.io from your browser bookmark or type the domain manually.
  • Real OpenSea pages almost never ask for credentials immediately after clicking from a message — treat any such redirect as a phishing attempt until the domain is verified.