Fraudox FRAUDOX
Scam domain Software & SaaS Global

Sweeping typosquat domains away from a SaaS brand

Dozens of lookalike domains were redirecting traffic and staging phishing. Fraudox cleared the active set and set up ongoing monitoring.

B2B SaaS company (anonymised)
37
Domains actioned
28h
Median time to removal
0
Customer-reported scams since

01 The challenge

A SaaS brand found dozens of registered typosquats and homoglyph domains — some parked, some redirecting to competitors, and a handful staging phishing pages aimed at its customers. Left alone, the parked and redirecting domains were a standing risk that could be weaponised at any time.

02 The approach

1

Triage by active risk

Domains were sorted into active phishing, redirecting, and parked. Active phishing was filed first as a priority; the rest were queued so nothing was missed.

2

Pursue removal at the registrar layer

Where domains were clearly abusive, we pursued suspension through registrar abuse channels rather than only chasing the hosted content.

3

Hand back a monitored watchlist

The remaining lookalikes were placed on a watchlist so newly weaponised domains are caught and filed early.

03 The outcome

37 domains were actioned with a median time-to-removal of 28 hours for the active phishing set. Since the engagement, the customer has reported zero new domain-based scams reaching its users.

Service used

Scam domain takedown

Learn more

Facing the same threat?

Start a takedown today. You only pay when content actually comes down.

More case studies

Phishing

Dismantling a 40-domain phishing cluster targeting a retail bank

A coordinated phishing kit spun up lookalike domains faster than the bank's SOC could report them. Fraudox took the entire cluster offline and cut reappearance to near zero.
Impersonation

Removing executive impersonation accounts across four platforms

Fake profiles of a company's leadership were running investment scams. Fraudox removed the impersonation accounts and the recruiting-scam pages feeding them.