cibc.uat5.supernovacompanies[.]com
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of cibc.uat5.supernovacompanies[.]com
This domain hosts a login page branded as “CIBC Marketable Secured Loan” and appears to present itself as an account-access portal for a financial service. The page title is simply “Login,” and the visible content includes CIBC branding, a username/email field, and links labeled Terms of Use and Privacy Policy, suggesting a customer authentication interface rather than a general informational website.
However, the hostname is a subdomain of supernovacompanies.com rather than an obvious primary domain associated with CIBC. Based on the domain structure and the page content, this may be a white-label, staging, or third-party hosted financial portal, but it could also be attempting to imitate a banking login experience. Multiple web-classification sources categorize it in financial and phishing-related categories, so the branding and purpose should be treated cautiously.
The infrastructure references assets served from supernovacompanies.com subdomains and includes third-party monitoring scripts, which is consistent with a modern web application. Even so, because the page prominently uses bank branding on a non-obvious host, its legitimacy is not clear from the domain name alone.
Safety Assessment for cibc.uat5.supernovacompanies[.]com
Several security signals raise concern for this page at the time of the scan. It was flagged by 7 out of 92 security engines, with multiple detections describing it as phishing or malicious, and web-classification providers labeled it as phishing and financial-related content. The screenshot also shows a banking-style login page using CIBC branding on a subdomain of supernovacompanies.com, which does not appear to be a primary CIBC web domain and may indicate a look-alike or third-party-hosted credential collection page.
At the same time, some supporting checks were clean: blacklist databases were reported clean, major browsing-threat lists did not show a listing, and the malware scan did not identify infected files on the page itself. Those clean results reduce certainty about active malware delivery, but they do not outweigh the phishing-oriented detections and the branding/domain mismatch visible on the page.
Because this page appears to request account access details for a financial brand from an unusual host, there is a meaningful risk of credential harvesting or impersonation. Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid SSL/TLS certificate issued through Amazon infrastructure, with certificate validity extending to 2026-09-09. It is hosted on AWS EC2 in us-east-1 (Ashburn, United States), and the domain has been registered for many years, with DNSSEC enabled and AWS nameservers configured. These are generally positive infrastructure signals, but they do not by themselves establish trust in the page’s purpose.
The page loads JavaScript and CSS assets from related supernovacompanies.com CDN subdomains and includes external telemetry/debugging resources. No malicious files were flagged in the file scan, though one referenced domain/IP string was associated with a generic suspicious-object heuristic. The more notable technical concern is not malware delivery but the apparent use of sensitive financial branding on a host that may not be an official brand-owned login domain.
Share your experience with this website. Was it safe? Did you encounter any issues?