Is my-auth.com a scam?

Based on 22 confirmed reports across the OpenPhish threat-intel feed, my-auth.com is a confirmed scam. The dominant attack pattern is obfuscated UUID-style URLs that route each victim to a unique landing page (anti-detection technique). Examples of flagged URLs on this domain: `/f2ee106c-a583-421c-a150-417a7b164ba9/b2xllnbldhrlci52zxn0bgladmlubw9ub3bvbgv0lm5v`, `/f2ee106c-a583-421c-a150-417a7b164ba9/bglubi5jyxjpbmuuagfydhzpz3nlbkb2aw5tb25vcg9szxqubm8=`. 22 reports in the last 30 days but zero in the last 7 — the infrastructure may be temporarily dormant, but the same domain has been re-used for fraud campaigns before and could be reactivated without warning. The combination of (a) the URL-pattern shape, (b) the threat-feed match, and (c) the report cadence above is the same triad we see in confirmed fraud infrastructure — there is no realistic legitimate-use case for my-auth.com given this fingerprint. Use the live check below — it pulls fresh signals from VirusTotal, WHOIS, and our own feeds in about three seconds so you can see the current verdict yourself.

Yes — my-auth.com is a confirmed scam. ScamRadar has tracked 22 confirmed reports across OpenPhish, first seen on April 22, 2026 and last seen on April 23, 2026. Do not log in, deposit funds, or share personal information with this site.

Red flags on my-auth.com

• URL-path analysis on my-auth.com surfaces obfuscated UUID-style URLs that route each victim to a unique landing page (anti-detection technique) — the path shape Google's safe-browsing crawler hasn't caught yet.
• Confirmed attack paths on this domain include: `/f2ee106c-a583-421c-a150-417a7b164ba9/b2xllnbldhrlci52zxn0bgladmlubw9ub3bvbgv0lm5v` and `/f2ee106c-a583-421c-a150-417a7b164ba9/bglubi5jyxjpbmuuagfydhzpz3nlbkb2aw5tb25vcg9szxqubm8=`.
• Real-time phishing feeds (OpenPhish) carry an active entry for my-auth.com.
• UUID-cloaked URLs mean each victim sees a unique link, which makes the attack invisible to peer-reported blocklists that match on exact URL.

What to do right now

1. Do not enter login credentials, card numbers, or wallet seed phrases on any page hosted at my-auth.com.
2. Run the live check on this page (right above) to confirm the threat-intel feeds flagging it in real time.
3. Do not share the link with anyone — each forwarded UUID URL gets logged by the attacker as an interested-victim signal and may be targeted with follow-on attacks.
4. Forward the original email (with full headers) to reportphishing@apwg.org and to the impersonated brand's abuse address — this propagates the indicator into commercial blocklists used by browsers and mail filters.
5. Save screenshots, the original email or message, and any transaction IDs — you will need them if you file a chargeback or talk to your bank's fraud team about my-auth.com.

Other domains we’ve checked

• Is invoice-partners-agency.com a scam? · Risk 95/100
• Is dvhtechnology.com a scam? · Risk 89/100
• Is sso-auth.com a scam? · Risk 89/100
• Is e-verif-notice.com a scam? · Risk 88/100
• Is strategic-digital-zone.com a scam? · Risk 87/100
• Is agency-partner-manage.com a scam? · Risk 87/100

ScamRadar · Blog · Scam Database · Is It Legit? · About