Protocol-impersonator domain registered (typosquat)

Evidence summary #

V2+V3 combined: Official domains: uniswap.org, app.uniswap.org, developers.uniswap.org. Uniswap is among the most-impersonated DeFi brand names globally. 'Unisswap'-style variants confirmed in prior security research. 2022 phishing attack ($4.7-8M) demonstrates adversarial brand exploitation history. 90-day registration window data requires DomainTools API not available in static assessment. Yellow: high-brand-recognition makes elevated typosquat activity highly probable; cannot definitively clear without domain monitoring feed.

Detail #

Signal fires when a typo-squat of the official domain is registered within the last 90 days. Assessment window: Feb-May 2026. Specific registration data for this window is not accessible via public web search — requires DomainTools API or WHOIS historical feed. The 'unisswap' variant is documented in Trust Wallet typosquatting security research. The 2022 phishing attack ($4.7-8M fake LP airdrop) demonstrates that adversarial actors actively exploit the Uniswap brand. Uniswap's $2.74B combined TVL and status as the most prominent DEX globally makes it a perpetually high-priority typosquat target. Yellow rather than not_assessed: the brand scale makes elevated typosquat risk near-certain even without specific domain registration data for the 90-day window.

Sources #

Methodology #

Determine whether a typosquat of the official protocol domain has been registered in the last 90 days.

See the full factor methodology and distribution across all protocols →