MalwareTips
Security Review

Is romwe.com legit or a scam?

Our verdict:Suspicious· 55/100

Established fast-fashion site with 16-year history, but mixed reviews, data-breach history, and persistent fraud complaints raise trust concerns.

Top reasons
Multiple consumer complaints cite unauthorized charges and fraud, with one reviewer stating they received merchandise they did not order.2018 data breach exposed ~7 million ROMWE accounts; parent company Zoetop paid $1.9M settlement in 2022 for mishandling breach disclosure.Independent review aggregators report 2.2–2.5 out of 5 stars with recurring complaints of non-delivery, poor refunds, and slow customer service.
romwe.comScanned 3h ago
Post Facebook
0
Trust score
SUSPICIOUS
Heuristics 99·MT 42
Category tags
fashion & apparelfast fashion retailer#Fake Shop#Data Harvester72% MT confidence
Warning signals (1)
Redirects to another domain

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
0/91
All engines report clean
Domain Age
17 years old
Registered Nov 5, 2009
MT Intelligence
Suspicious
Moderate likelihood · 72% confidence
SUSPICIOUS

Shop shows non-delivery red flags

Established fast-fashion site with 16-year history, but mixed reviews, data-breach history, and persistent fraud complaints raise trust concerns. Several red flags typical of non-delivery shops are present. Don't pay by crypto or wire, and keep the chargeback window in mind.

Website Preview

Screenshot of romwe.com
LIVE RENDER
romwe.com

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Moderate scam likelihoodengineMT · Guardiantrust42/100
MT AgentLive web researchVisual inspection
0%
Confidence
ROMWE has operated since approximately 2009 and is owned by Zoetop Business Co., Ltd., the same parent company that owns SHEIN. The domain is legitimate and well-established, with no malware detections and valid SSL. However, the evidence package reveals a pattern of serious customer-protection failures: independent review aggregators report a 2.2/5 rating on one platform and 2.5/5 on another, with recurring complaints of unauthorized charges, non-delivery, and poor refund handling. Most critically, ROMWE suffered a major 2018 data breach affecting approximately 7 million accounts; the parent company was later fined $1.9 million by New York authorities in 2022 for mishandling and downplaying the breach. While some reviewers confirm items do arrive and match photos, the overwhelming pattern is low-quality merchandise, slow shipping from China, and inadequate customer service. The lack of visible contact information on the homepage compounds these concerns.
Full dossier
Analysis complete

Page Content

The homepage presents a functional fast-fashion storefront with product listings, category navigation, and promotional pricing. The page title and meta description accurately describe ROMWE as an alternative-clothing retailer. However, no contact email, phone number, or postal address is visible on the page, which is unusual for an established e-commerce business and limits customer recourse.

Infrastructure

The domain uses valid SSL encryption (DigiCert OV certificate, 131 days to expiry) and is hosted on IP 52.39.206.44 with a clean abuse score of 0/100. Our antivirus network reports zero detections across 91 engines. The page loads external resources from legitimate CDNs (ltwebstatic.com, discord.com), indicating a professionally maintained infrastructure.

Domain History

ROMWE was registered approximately 6,066 days ago (roughly 2009–2010), making it a genuinely long-established domain. It is owned by Zoetop Business Co., Ltd., a Hong Kong-registered entity that also owns SHEIN. The domain is not a clone or homoglyph variant. Business registration records confirm active status and legitimate corporate backing.

Web Reputation

Independent review aggregators report mixed-to-negative ratings: 2.2/5 from 201 reviews on one platform and approximately 2.5/5 from 3,000 reviews on another. Recurring complaint themes include unauthorized charges, non-delivery, poor quality, slow shipping, and inadequate customer service. A 2018 data breach exposed approximately 7 million ROMWE customer accounts; the parent company was fined $1.9 million in 2022 by New York authorities for mishandling the breach and downplaying its severity. Some positive reviews acknowledge that items do arrive and match photos, but emphasize low quality and slow delivery times.

Risk Factors
7
  • Multiple consumer complaints cite unauthorized charges and fraud, with one reviewer stating they received merchandise they did not order.
  • 2018 data breach exposed ~7 million ROMWE accounts; parent company Zoetop paid $1.9M settlement in 2022 for mishandling breach disclosure.
  • Independent review aggregators report 2.2–2.5 out of 5 stars with recurring complaints of non-delivery, poor refunds, and slow customer service.
  • No visible contact email, phone, or postal address on the homepage, limiting customer recourse for disputes.
  • Parent company (Zoetop/SHEIN) has faced regulatory penalties and data-protection criticism, raising questions about corporate accountability.
  • BBB records show no accreditation and an F rating with multiple complaints cited in older reviews.
  • Cross-domain redirects (3 hops) and external resource loading from multiple subdomains increase attack surface for credential harvesting or malware injection.
Positive Signals
5
  • Domain is genuinely 16+ years old, indicating long-term business operation rather than a fly-by-night scheme.
  • Valid SSL certificate from a tier-1 issuer (DigiCert) with proper certificate chain.
  • Zero detections from our antivirus network across 91 engines and clean browser blocklists.
  • Some independent reviewers confirm items do arrive and match product photos, suggesting operational fulfillment.
  • Hosting IP has zero abuse reports and a clean reputation score.
AI Recommendation
Do not enter payment details on ROMWE without understanding the risks: the site has a documented history of data breaches, unauthorized charges, and poor customer service. If you choose to purchase, use a virtual card number or payment service with fraud protection, monitor your accounts closely, and expect slow shipping and potential quality issues. For alternative-clothing retailers with better
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for romwe.com, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
16 yrs
Registered Nov 2009
Business registration
Active · China (via Zoetop Business Co., Ltd., Hong Kong registered)
Site traces back to an actively registered business.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
5 scam reports · 3 complaints · 4 positive
Key findings
7 headline facts from open-web research
  • Domain registered over 16 years ago (approx 2009-2010); long-established fast fashion site focused on alternative styles
  • Owned by/affiliated with Zoetop Business Co. Ltd (Hong Kong/China), same parent as SHEIN since 2014 acquisition
  • BBB: Not accredited, F rating with multiple complaints noted in older reviews (around 55 cited in 2022 sources)
  • Reviews.io shows 2.2/5 from 201 reviews with frequent complaints of non-delivery, poor customer service, refunds, and fraud claims
  • Trustpilot ~2.5/5 from 3K reviews; mixed with praises for cheap trendy items and criticisms of quality/shipping
  • Major 2018 data breach affecting ~7M ROMWE accounts; parent Zoetop paid $1.9M settlement in 2022 for mishandling and downplaying breach
  • Multiple independent reviews (2024-2025) conclude it is legitimate (items arrive, matches photos) but low-quality fast fashion with slow shipping from China
Scam reports (5)
Direct quotes from public scam databases, forums, and news.
  • Reviews.ioopen

    "This is major fraud. I am not legally required to pay for unauthorized merchandise I did not order."

  • Reviews.ioopen

    "DONT BUY HERE. SCAM. Garment arrived late and way too small."

  • Whimsysoul.comopen

    "This is definitely a scam stay away. ... they are worried about fraud and need a PICTURE OF MY ID AND CREDIT CARD"

  • Whimsysoul.comopen

    "dont buy. you will get the stuff but they will sell your credit card info and will get fraudulent purchases."

  • BBB via reviewsopen

    "Romwe has no rating by the BBB (which isn't good) and 55 complaints."

Positive reviews (4)
Quotes indicating the site is legitimate.
  • ElisabethMcKnight.comopen

    "Romwe is an established fast fashion retailer... Romwe is a reputable fast fashion site based in China that delivers lower quality, trendy pieces."

  • Have-Clothes-Will-Travel.comopen

    "Overall, my experience with Romwe was positive. I received everything I ordered and felt it looked similar to the photos."

  • Trustpilotopen

    "Honestly you get what you pay for - poor quality (usually) and low price. But cannot fault them, I've placed many orders and have had nothing but positive..."

  • YouTube comment via reviewopen

    "romwe isn't a scam... i shopped from it like, 500 times"

Business registration
Status: active · China (via Zoetop Business Co., Ltd., Hong Kong registered)

Subsidiary/brand of SHEIN (acquired 2014); parent Zoetop faced $1.9M NY AG penalty in 2022 for data breach handling

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

Independent review aggregators report a 2.2/5 rating (201 reviews) and 2.5/5 rating (3,000 reviews) with recurring complaints of unauthorized charges, non-delivery, poor quality, and slow customer service. A 2018 data breach exposed approximately 7 million ROMWE customer accounts; the parent company Zoetop was fined $1.9 million by New York authorities in 2022 for mishandling the breach. Some reviewers confirm items do arrive and match photos, but emphasize low quality and extended shipping times from China. BBB records show no accreditation and an F rating with multiple complaints.

Antivirus Engines

Clean pass · verified
Clean across 91 engines

We cross-check every URL against our antivirus network of 91 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious60Harmless91Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbersNone
Postal addressNot listed
Linked social profiles0
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No phone number listed on the page.
  • No postal address visible on the page.

Domain & Encryption

Domain History
Age17 years old
RegistrarAlibaba Cloud Computing (Beijing) Co., Ltd.
RegisteredNov 5, 2009
ExpiresNov 5, 2027
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerDigiCert, Inc. · DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1
ExpiresOct 24, 2026 (131d)
Self-signedNo
Hosting & Technology
HostingAmazon Technologies Inc.
Server locationUS
Web serverAPISIX/3.15.0
PopularityTop 100k worldwide

Redirect Chain

Hops
3
Cross-domain
Yes
Lookalike
No
Punycode
No
  • 1301http://romwe.com/
  • 2301https://romwe.com/
  • 3302https://www.romwe.com/cross-domain
  • 4200https://us.romwe.com/?ref=www&rep=dir&ret=uscross-domain

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPAmazon Technologies Inc.
Usage typeData Center/Web Hosting/Transit

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Fake Shop
Fake Shop
Moderate likelihood
33/100
  • AI analyst tagged this as a fake shop.
  • No phone number or postal address anywhere on the page.
  • Multiple contact / trust-signal red flags on the page.

Fake-shop warning signs

Signals common to non-delivery scam shops were detected on this site.

  • Treat romwe.com as unverified

    Do not enter credentials or send money until you have independently verified the business.

  • If you already paid by card or PayPal — start a chargeback

    Contact your bank or card issuer and dispute the charge as "goods not received" or "merchant fraud." PayPal users can open a case in the Resolution Centre. Act within 120 days for card chargebacks in most jurisdictions.

  • Save every piece of evidence

    Screenshots of the checkout, order confirmation emails, any chat transcripts, and the product listing page. Chargeback and fraud reports go faster when you have receipts.

  • Report the shop

    Report to the FTC (reportfraud.ftc.gov), Action Fraud UK, or your local consumer-protection body. Post the URL on the MalwareTips scam forum so other buyers can find it.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

cjs.ltwebstatic.comimg.ltwebstatic.comshein.ltwebstatic.comromwe.ltwebstatic.comdiscord.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review marked romwe.com as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.
  • romwe.com currently scores 55/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.
  • Yes. romwe.com presents a valid TLSv1.3 certificate issued by DigiCert, Inc. · DigiCert Secure Site OV G2 TLS CN RSA4096 SHA256 2022 CA1, expiring in 131 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • romwe.com is 16.6 years old, registered on 11/5/2009 through Alibaba Cloud Computing (Beijing) Co., Ltd.. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • No. All 91 antivirus engines in our malware network report romwe.com as clean.
  • No. romwe.com is not currently listed on the major browser blocklist feeds that modern browsers use.
  • romwe.com resolves to an IP operated by Amazon Technologies Inc. in US (usage type: Data Center/Web Hosting/Transit). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • Yes. romwe.com sits in the global top-100k on Cloudflare Radar, which means it has substantial real-world traffic. That does not automatically make it safe, but established brands almost always rank here and throwaway scam domains almost never do.

Final Verdict

0
Trust / 100
Final Verdict·romwe.com
SUSPICIOUS

ROMWE is a long-established Chinese fast-fashion retailer owned by the parent company of SHEIN, but carries significant fraud and data-handling risks. Multiple consumer complaints cite unauthorized charges, poor quality, and a major 2018 data breach affecting millions of accounts. While items do arrive, the business model prioritizes volume over customer protection.

Do not enter payment details on ROMWE without understanding the risks: the site has a documented history of data breaches, unauthorized charges, and poor customer service. If you choose to purchase, use a virtual card number or payment service with fraud protection, monitor your accounts closely, and expect slow shipping and potential quality issues. For alternative-clothing retailers with better

AV engines
91
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Suspicious reports

Browse all reports
Suspicioustrust61
computingdata.com
3m ago
Read the review
Suspicioustrust53
streamxtv.net
34m ago
Read the review
Suspicioustrust56
z-library.im
36m ago
Read the review
Suspicioustrust49
raw.githubusercontent.com
48m ago
Read the review
Suspicioustrust55
lookmovie.com
1h ago
Read the review
Suspicioustrust61
lutecllm.uk
2h ago
Read the review
Suspicioustrust66
squarestech.com
2h ago
Read the review
Suspicioustrust60
iinfinity.tw
2h ago
Read the review
Suspicioustrust60
tunefab.com
2h ago
Read the review
Suspicioustrust63
snaptube.com
2h ago
Read the review
Suspicioustrust68
cb.getarcticblast.com
2h ago
Read the review
Suspicioustrust55
lotterymaximizer.com
2h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.