fedex-express[.]org
Category: Phishing, Newly Registered
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of fedex-express[.]org
The website at fedex-express[.]org presents itself as a parcel delivery and shipment-tracking service. Based on the domain name, page title, and homepage design, it appears to imitate the branding of the well-known FedEx logistics company and offers functions such as shipment tracking, shipping, locations, and account sign-in.
The page uses a polished courier-style layout with logistics-related wording such as "Track Your Shipment" and "Global Express Delivery." However, the domain is not the primary official brand domain commonly associated with FedEx, and the site appears to be hosted as a recently created standalone web deployment rather than an established corporate web property. Based on available data, the operator is not clearly identified on the page metadata provided.
Safety Assessment for fedex-express[.]org
This domain shows multiple risk indicators at the time of this scan. It was flagged by 12 out of 91 security engines, with several classifying it as phishing or otherwise suspicious, and multiple web-classification sources labeled it as phishing or newly registered. The domain name closely resembles the FedEx brand while using a different domain, which may indicate a look-alike website intended to capture shipment details, login credentials, or other user information.
Although the malware scan did not detect malicious files in the sampled content and several blacklist databases did not list the site at the time of this scan, that does not outweigh the broader phishing-related signals. The domain is only 3 days old, has no established traffic ranking, and visually presents itself as a major logistics brand despite being hosted on generic cloud infrastructure. Newly created impersonation-style domains are commonly associated with short-lived fraud campaigns.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid Let's Encrypt SSL certificate, which means traffic can be encrypted in transit, but HTTPS alone does not verify that the operator is legitimate. It is hosted on Vercel infrastructure, uses Vercel nameservers, and resolves to an IP in the United States. The page assets suggest a modern JavaScript frontend deployment, likely built with a framework such as Next.js.
From a domain-security perspective, the registration is extremely recent, DNSSEC is unsigned, and the hosting setup appears consistent with a quickly deployed cloud-hosted site. No malicious files or flagged outbound links were identified in the provided crawl sample, but the combination of recent registration, brand resemblance, and multi-engine phishing detections remains a significant concern at the time of this scan.
Share your experience with this website. Was it safe? Did you encounter any issues?