WebVetted Beta
+ New Report

Domain Due Diligence
Report for Unstoppable.money

Report Date October 8, 2025
Recommendation
Caution
Overall Summary
Suspicious
Why we think so

Quick verdict: suspicious / proceed with caution. unstoppable.money appears to be a legitimate non‑custodial crypto wallet site that’s been online since 2019, serves a small global audience (~4.7k monthly visits) and runs on DigitalOcean with a valid SSL certificate. Key positives: no matches on crypto‑scam blacklists, no Google Safe Browsing flags, and a public bug‑bounty program mentioned in community sources. Key concerns: WHOIS registrant info is redacted (privacy service), the site exposes no public support email addresses, traffic is low and concentrated in a few countries, and several similarly named businesses exist in public maps results — raising impersonation risk. Recommendation: do not send large amounts; verify mobile app packages, check official social channels, and test with a small amount first.

Confidence Score
65%

Risk Insights

No blacklist or Safe Browsing flags ✅

Crypto scam sniffer returned clean.
Google Safe Browsing shows no matched threats.
These are good signals but not definitive proof of safety.
⚠️

Operator traceability is limited ⚠️

WHOIS registration details are redacted.
No public support email/phone found on the site.
Limited contactability raises recovery/complaint friction.

Contradictory Signals

Active security posture is positive, but operator anonymity makes recourse harder if something goes wrong.

Signal A: Public bug bounty and community discussion show attention to security (positive).

Signal B: WHOIS redaction and lack of site contact reduce operator accountability (negative).

Category Scores

Identity 60/100
Reputation 65/100
Technical 70/100
Content 60/100
Legal 70/100
Business Validity 65/100

Red Flags & Warnings

  • Registrant info in WHOIS is redacted; no public company contact email or phone found on the site — hard to hold an operator accountable.
  • Low traffic and small visible user base — fewer public reports could mean issues stay private longer.
  • Multiple unrelated Google Places entries share the 'Unstoppable' name; risk of impersonation and user confusion.

🔎 Detailed Checks & Analysis

Domain age & WHOIS transparency

Score: 60/100
Failed

"Created in April 2019 (reasonable age). WHOIS RDAP output shows registrant fields redacted and NameCheap as registrar; reduces operator traceability."

Reason: Domain has multi‑year history but registrant details are redacted.

Technical setup (SSL, hosting, DNS records)

Score: 80/100
Passed

"SSL issued (valid until 2025‑11‑21). Nameservers point to DigitalOcean; A record resolves. DNS contains wallet‑connect verification TXT entry."

Reason: HTTPS and standard hosting; WalletConnect DNS TXT record present.

Traffic & usage signals

Score: 55/100
Failed

"SimilarWeb estimates ≈4.7k visits/month, low pages/visit (~1.62) and moderate bounce rate (~43%)."

Reason: Low traffic and limited page engagement suggest a small user base.

Reputation & blacklist checks

Score: 75/100
Passed

"Crypto scam sniffer and Google Safe Browsing returned no matches or detected threats."

Reason: No blacklist or safe‑browsing flags found.

Contact & support transparency

Score: 50/100
Failed

"Scraper found Facebook, Twitter, TikTok and Pinterest links but no direct support email or phone number on the domain."

Reason: No site emails or phone numbers found; only social accounts are listed.

Trademark / brand impersonation risk

Score: 60/100
Failed

"USPTO search returned no results for 'unstoppable.money'; Google Places shows unrelated 'Unstoppable' businesses which could be used in phishing/impersonation."

Reason: No trademark for the exact domain, but several similarly named local businesses exist.

Community & incident history

Score: 70/100
Passed

"Perplexity aggregated results note a public bug bounty and forum discussion focusing on usability rather than theft; no verified reports of exploited vulnerabilities found in available sources."

Reason: Community sources and bug bounty references show attention to security and no publicized fund‑loss incidents.

Your Next Steps

  • 1
    Verify the mobile app package on official stores (check developer name, number of installs, and review timestamps) before installing.
  • 2
    Confirm social accounts listed on the site (Twitter, Facebook, TikTok) match the app store developer details and pinned security notices.
  • 3
    Do not deposit large sums; test with a small transfer first and confirm recovery using your own seed phrase backup.
  • 4
    If you need custody or fiat on‑ramps, prefer providers with known corporate disclosures and support email/phone channels.
  • 5
    Report any phishing or impersonation pages to your browser and to Google if you find fake variants of the site.

Evidence & Citations

🕵🏻 Keep investigating

Recommended →
🌐 Scan another website

Run another instant due diligence scan on any website URL. Verify before you trust!

Spot fake SaaS login pages before handing over credentials

Phishing crews spin up carbon-copy login portals for CRM and finance tools, siphoning credentials before users realize t...

Read playbook →
Analyze giveaway landing page phishing

Giveaway pages entice with consoles or flights, then harvest card data and selfies “for verification.” ScamAI checks reg...

Read playbook →