Suspicious

Phishings targeting Spotify

Suspicious and active websites

Phishings targeting Spotify

Suspicious and active websites

Active
10
New (7d)
4
Trend (7d)
↑300%
Website
spotify.com
About
AIStreaming-account-resale target. Lower per-account value than Netflix but high volume.
Hosts
Fastly, Inc. (4) · Amazon.com, Inc. (4) · Cloudflare, Inc. (2)
Countries
United StatesUnited States (10)
TLS certs
WR1 (4) · R12 (4) · WE1 (2)

Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.

Last check (UTC) First seen (UTC) URL Screenshot Flags Details
2026-06-13 01:30 2026-06-12 01:01
https://spotify-client-beta.vercel.app/login
Screenshot of spotify-client-beta.vercel.app OpenPhish Details
2026-06-13 01:30 2026-06-12 01:01
http://a2zapk.co/1368404-spotify-music-and-podcasts-9-0-30-242-ab-exp…
Screenshot of a2zapk.co OpenPhish Details
2026-06-13 01:30 2026-06-12 01:01
https://spotify-client-beta.vercel.app/signup
Screenshot of spotify-client-beta.vercel.app OpenPhish Details
2026-06-13 01:30 2026-06-09 13:00
https://spotify-client-beta.vercel.app
Screenshot of spotify-client-beta.vercel.app OpenPhish Details
2026-06-13 01:30 2026-06-01 01:00
https://kavishkadileepa01.github.io/log-in-to-spotify
Screenshot of kavishkadileepa01.github.io OpenPhish Details
2026-06-13 01:30 2026-05-29 01:00
https://spotifypremiumapkmundoperfecto.com
Screenshot of spotifypremiumapkmundoperfecto.com OpenPhish Details
2026-06-13 01:30 2026-05-23 13:01
http://spotify-client-beta.vercel.app
Screenshot of spotify-client-beta.vercel.app OpenPhish Details
2026-06-13 01:30 2026-04-12 13:02
http://tamires-ramos.github.io/imersao-alura-spotify
Screenshot of tamires-ramos.github.io OpenPhish urlscan Details
2026-06-13 01:30 2026-04-05 13:01
https://david-santos7.github.io/projeto-clone-spotify
Screenshot of david-santos7.github.io OpenPhish urlscan Details
2026-06-13 01:30 2026-03-29 13:01
https://tamires-ramos.github.io/imersao-alura-spotify
Screenshot of tamires-ramos.github.io OpenPhish urlscan Details

Suspicious sites — confidence is not always 100%. Use for Threat Hunting or watchlists.

URL Screenshot Details
https://spotify-client-beta.v…
OpenPhish 		Screenshot of spotify-client-beta.vercel.app Details
http://a2zapk.co/1368404-spot…
OpenPhish 		Screenshot of a2zapk.co Details
https://spotify-client-beta.v…
OpenPhish 		Screenshot of spotify-client-beta.vercel.app Details
https://spotify-client-beta.v…
OpenPhish 		Screenshot of spotify-client-beta.vercel.app Details
https://kavishkadileepa01.git…
OpenPhish 		Screenshot of kavishkadileepa01.github.io Details
https://spotifypremiumapkmund…
OpenPhish 		Screenshot of spotifypremiumapkmundoperfecto.com Details
http://spotify-client-beta.ve…
OpenPhish 		Screenshot of spotify-client-beta.vercel.app Details
http://tamires-ramos.github.i…
OpenPhish urlscan 		Screenshot of tamires-ramos.github.io Details
https://david-santos7.github.…
OpenPhish urlscan 		Screenshot of david-santos7.github.io Details
https://tamires-ramos.github.…
OpenPhish urlscan 		Screenshot of tamires-ramos.github.io Details

AIHow to verify a real Spotify URL

  • Legitimate Spotify URLs always end in spotify.com (e.g. www.spotify.com, account.spotify.com). Anything else — including look-alike typosquats, hyphenated variations, or unfamiliar TLDs like .xyz / .top / .vip — is not Spotify.
  • The padlock icon proves TLS is active, not that the site is safe. Free DV certificates are issued to attackers in minutes; every active site listed above has a valid TLS certificate.
  • If you got the link from email, SMS, or social media, do not click it. Open spotify.com from your browser bookmark or type the domain manually.
  • Real Spotify pages almost never ask for credentials immediately after clicking from a message — treat any such redirect as a phishing attempt until the domain is verified.