The Fraudox blog
Threat research, takedown playbooks, and field notes on phishing, impersonation, fake apps, and scam domains.
How a phishing site takedown actually works
From the first abuse report to confirmed removal — the real steps, the parties involved, and why some takedowns stall while others resolve in hours.
Lookalike domains: the typosquatting threat to your brand
Typosquats and homoglyph domains are cheap to register and easy to weaponise. Here is how they work and what to do about the ones already pointed at your brand.
Removing impersonation accounts from social media
Fake profiles of your brand and executives run scams at scale. Each platform has a different removal path — here is how to navigate them.
How counterfeit apps slip into app stores — and how to remove them
Fake apps carrying your brand can skim payment data and erode trust. Here is how they get listed and the fastest way to get them pulled.
Why we only charge for successful takedowns
Success-based pricing isn't a discount gimmick — it's an alignment mechanism. Here's why we tie our billing to the only metric that matters.
The anatomy of a phishing kit
Modern phishing is industrialised. Understanding how a kit is packaged explains why single-URL takedowns fail and cluster takedowns work.