v0-coinbase-login-page.vercel.app
Category: Phishing
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Description of v0-coinbase-login-page.vercel.app
This domain appears to host a login page styled to resemble Coinbase, a well-known cryptocurrency platform. The page title and visible content say "Sign in - Coinbase," and the screenshot shows a branded sign-in form requesting an email address and password. The domain itself, however, is a subdomain of vercel.app rather than an official Coinbase-owned domain, which suggests it may be a separately deployed web app rather than a legitimate corporate login portal.
Based on the domain structure and page presentation, the site appears to be a single-purpose credential collection page rather than a full financial services website. It is hosted on Vercel infrastructure and uses Coinbase branding elements in a way that may indicate impersonation. No evidence in the provided scan data suggests that Coinbase operates this specific subdomain.
Safety Assessment for v0-coinbase-login-page.vercel.app
Multiple scan signals indicate elevated risk at the time of this scan. The domain was flagged by 19 out of 91 security engines, and a major threat database listed it for social-engineering activity. In addition, the domain closely resembles coinbase.com and presents itself as a Coinbase sign-in page, which may indicate a look-alike login portal intended to capture account credentials. The lack of a traffic ranking and the use of a third-party hosting subdomain add to that concern.
The malware scan did not report flagged files, but it did apply a generic malicious heuristic to the domain and many linked static resources. Those generic heuristic labels are lower-confidence on their own, yet in this case they are outweighed by the broader multi-engine phishing consensus and the visible brand imitation. The domain's IP address also appears on one mail-reputation blocklist, which is a weaker signal than phishing detections but still worth noting.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid SSL/TLS certificate issued by a mainstream certificate authority, with expiry shown as 2026-07-27. It is hosted on Vercel infrastructure, with the web server identified as Vercel and nameservers pointing to vercel-dns-3.com. DNSSEC appears to be unsigned.
From a technical perspective, the presence of HTTPS does not by itself establish legitimacy, especially for hosted login pages on shared deployment platforms. The page appears to be a lightweight web application with Next.js-style static asset paths under /_next/, and the scan data shows numerous internal resources that were generically flagged during analysis. The main concern is not the TLS setup but the apparent impersonation of a financial brand on a non-official domain.
Share your experience with this website. Was it safe? Did you encounter any issues?