Not every dangerous website is an obvious phishing scam. Some exist in a gray area—they aren’t outright stealing your credentials but still trick you into losing money or data. These are sites with an undefined trust level. Below, we answer common questions to help you recognize and avoid them.
What exactly is a website with an undefined trust level?
Unlike classic phishing sites that directly steal passwords or credit card numbers, these resources operate on the fringes of legality. They might not break the law, but they use manipulative tactics to coax you into paying for fake services, signing up for hidden subscriptions, or sharing personal details under false pretenses. Examples include fraudulent online stores that never ship orders, dubious crypto exchanges, investment platforms promising unrealistic returns, and services with notoriously hard-to-cancel subscription plans. Their key trait: you willingly hand over money or information, often after being lured by cleverly crafted Terms of Service that include no-refund clauses or auto-renewal traps.
How does Kaspersky’s new ‘Sites with an undefined trust level’ category work?
In response to this growing threat, Kaspersky introduced a dedicated web filtering category across its products (such as Kaspersky Premium, Android, and iOS apps). Instead of relying on blacklists of known phishing sites, the system automatically assesses multiple risk factors for any unfamiliar resource. It checks: the domain name and age (via WHOIS data), IP address reputation, DNS configuration, HTTP security headers, and SSL certificate validity. By combining these signals, the filter flags resources that exhibit suspicious patterns—even if they haven’t been reported before. This proactive approach helps catch emerging traps that traditional security tools might miss.
What is the most widespread global threat in this category?
According to Kaspersky data from January 2026, the leading threat worldwide is fake browser extensions that mimic legitimate security products. These malicious add-ons were detected in 9 out of 10 regions analyzed. Once installed, they can intercept all browser data, track your online activity, hijack search queries, and inject unwanted advertisements. Because they pretend to be useful tools (like antivirus or ad blockers), users often grant them extensive permissions without suspicion. This makes them a particularly stealthy and effective weapon for cybercriminals.
How do regional threats differ for suspicious websites?
Kaspersky’s regional statistics reveal stark differences in the types of suspicious sites that dominate each area. In Africa, over 90% of the top 10 suspicious websites were online trading scam platforms. Latin America saw a predominance of fake betting services. In Russia, the most common were fraudulent binary options brokers and “educational platforms” that trick users into recurring subscriptions. Meanwhile, in CIS countries, crypto scams and bots designed to inflate social media engagement were the main threats. Understanding local trends helps users stay alert to the specific dangers in their region.
What key indicators should I look for to spot a suspicious website?
Several red flags can help you identify sites with undefined trust levels. Check the domain name—strange combinations of numbers or random characters are a warning sign. Cheap top-level domains like .xyz, .top, and .shop are often used by scammers. A recently registered domain (less than 6 months old according to WHOIS data) also raises suspicion. Be wary of unrealistic promises such as “100% guaranteed income” or “up to 300% profit.” Look for the lack of company contact information, and note if payments are accepted only via cryptocurrency or irreversible bank transfers. These clues, combined with common sense, can prevent costly mistakes.
How do these sites manipulate users through Terms of Service?
One of the most cunning tactics used by websites with undefined trust levels is a carefully crafted Terms of Service (ToS) document. While the site may appear legitimate, the fine print often includes clauses that explicitly allow the operator to take your money and provide nothing in return. Common tricks: no-refund policies even for non-delivery, automatic subscription renewals with no easy cancellation method, and hidden fees disclosed only in legalese. Because you “agreed” to these terms, the operation stays just within legal boundaries—making it nearly impossible to get your money back. Always read the ToS carefully before providing payment information.
What should I do if I encounter a site with an undefined trust level?
If you suspect a website is in this gray zone, do not engage. Do not make purchases, enter personal data, or install any browser extensions offered by the site. Instead, report it to security vendors like Kaspersky so they can update their filtering databases. For your own protection, consider using a security solution that includes the “Sites with an undefined trust level” category. Additionally, check the domain using WHOIS lookup tools, verify the site’s contact details independently, and search for user reviews (but be aware that scammers sometimes post fake positive reviews). Staying cautious and informed is your best defense.