Is severadao.ai a scam?

Our automated security review marked severadao.ai as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.

Is severadao.ai safe to use?

severadao.ai currently scores 55/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.

Does severadao.ai have a valid SSL certificate?

Yes. severadao.ai presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 47 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.

Has severadao.ai been flagged by antivirus engines?

No. All 92 antivirus engines in our malware network report severadao.ai as clean.

Is severadao.ai on any phishing or malware blacklists?

No. severadao.ai is not currently listed on the major browser blocklist feeds that modern browsers use.

Where is severadao.ai hosted?

severadao.ai resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.

How often is the severadao.ai report updated?

This is a permanent record of the scan run on June 23, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around severadao.ai have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Security Review

Is severadao.ai legit or a scam?

Our verdict:Suspicious· 55/100

SafeSuspiciousDangerous

SeveraDAO Security is a cybersecurity consultancy run by a high-profile former hacker, offering penetration testing and audits with a background in offensive cybercrime.

Top reasons

Founder has a documented criminal history involving botnet operation and wire fraud.Services require granting deep technical access to a former high-profile threat actor.No independent client testimonials or case studies are available for the consulting services.

severadao.aiScanned 2h ago

Post Facebook

Trust score

SUSPICIOUS

Heuristics 91·MT 45

Category tags

cybersecurity services85% MT confidence

Positive signals (4)

Antivirus clear Not on major blacklists Encrypted connection Clean server reputation

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence

0/92

All engines report clean

Domain Age

—

Registration date unknown

MT Intelligence

Suspicious

Moderate likelihood · 85% confidence

SUSPICIOUS

Warning signs detected

Several risk indicators suggest caution. This site might be legitimate — but treat it as unverified until you can independently confirm.

Website Preview

LIVE RENDER

severadao.ai

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence

MT Security Analyst

Moderate scam likelihoodengineMT · Guardiantrust45/100

MT AgentLive web researchVisual inspection

Confidence

The site is the official front for SeveraDAO Security LLC, a business providing penetration testing and smart contract audits. Our research confirms the founder is Peter Levashov, a notorious figure who pleaded guilty to major federal cybercrime charges including operating the Kelihos botnet. While he has pivoted to legitimate security research and is active on bug bounty platforms, his history of wire fraud and computer damage is a major risk factor. The business is transparent about its legal structure in Florida, but the lack of third-party client testimonials for these specific services makes it difficult to verify current performance. We have adjusted the trust score to reflect the high-risk nature of granting a former threat actor access to private business systems.

Full dossier

Analysis complete

Page Content

The website presents a professional service catalog for penetration testing, API security, and smart contract audits. It includes specific pricing tiers ranging from $900 to $2500 and explicitly mentions that engagements are contracted through a Florida-based LLC.

Infrastructure

The domain is hosted behind a common content delivery network with a valid SSL certificate. Technical scans show no active malware or phishing scripts, and the site functions as a standard service landing page with a contact form.

Domain History

The domain has been active for over a year and is used for both the web presence and email forwarding. It is not currently indexed in global traffic rankings, suggesting a low-volume, niche client base.

Web Reputation

Reputation is polarized; the founder is acknowledged as a contributor to several legitimate bug bounty programs. However, major news outlets and historical records document a decade of criminal activity involving spam and botnets, which remains the primary reputational signal.

Risk Factors

Founder has a documented criminal history involving botnet operation and wire fraud.
Services require granting deep technical access to a former high-profile threat actor.
No independent client testimonials or case studies are available for the consulting services.
The business model relies on the founder's past criminal experience as a selling point.
Low global traffic volume makes it difficult to gauge the site's current user base.

Positive Signals

Legally registered as an active LLC in the state of Florida.
Founder is an acknowledged contributor to reputable bug bounty programs.
Transparent about the founder's identity and past legal issues.
Clean scan results from our antivirus network and malware engines.

AI Recommendation

If you are considering these services, perform rigorous due diligence and ensure all work is governed by a strict legal contract. Be aware that you are granting a former threat actor access to your security vulnerabilities.

Next-gen fraud intelligence

Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for severadao.ai, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Business registration

Active · United States

Site traces back to an actively registered business.

Clone check

Not a clone

No well-known site's layout or branding detected here.

Typosquat check

No look-alike match

The domain doesn't resemble any well-known brand's spelling.

Web mentions

2 scam reports · 2 positive

Key findings

7 headline facts from open-web research

Domain severadao.ai is the official website of SeveraDAO Security, offering penetration testing (from $1500), API security reviews (from $1200), external exposure assessments (from $900), and smart contract audits (from $2500), operated by
Founder is Peter Levashov (aka Severa, peter@severadao.ai), who openly references his past on the site via links to Wikipedia and TIME article; site emphasizes attacker's perspective from experience with Russian-speaking threat actors.
Peter Levashov has a significant criminal history: operated Kelihos botnet, described by Spamhaus as one of the longest-operating criminal spammers; arrested 2017 in Spain, extradited to US, pleaded guilty to wire fraud, computer damage, co
Levashov is active as a smart contract security researcher on Immunefi (1 BBP report, $1000 earned) and acknowledged in Synology's bug bounty program; maintains LinkedIn, GitHub, Instagram, Telegram (@peter_severa), and promotes services th
No client testimonials, case studies, or third-party reviews of actual audits/pentests found on the site or in searches; no scam complaints, fraud reports, or negative reviews specifically about SeveraDAO Security services located.
Site is transparent about legal structure (invoices via Florida LLC), requires written authorization and scoped agreements before testing; domain also used for email forwarding.
Post-conviction business pivoted from AI/crypto trading (SeveraDAO) to cybersecurity consulting, leveraging his offensive security background.

Scam reports (2)

Direct quotes from public scam databases, forums, and news.

Wikipediaopen
"Peter Levashov is a Russian spammer and virus creator... operated the Kelihos botnet... pleaded guilty to one count of causing intentional damage to a protected computer, one count of conspiracy, one count of wire fraud, and one count of ag"
TIMEopen
"This Infamous Russian Hacker Wants Your Crypto Investment... Levashov has been working on a new venture, which he calls SeveraDAO."

Positive reviews (2)

Quotes indicating the site is legitimate.

Immunefiopen
"Smart contract security researcher... Website: https://SeveraDAO.ai/ Email: peter@severadao.ai... BBP reports: 1"
Synology Bug Bountyopen
"Peter Severa Levashov (https://www.SeveraDAO.ai)"

Business registration

Status: active · United States

SEVERADAO SECURITY LLC (L26000272609), Florida LLC, active per Sunbiz.org; operates SeveraDAO Security for cybersecurity consulting, pentesting, vulnerability research, and assessments

Research summary

Narrative write-up from our AI analyst, grounded on the facts above

Our research confirms that SeveraDAO Security is operated by Peter Levashov, who was previously a prolific Russian hacker known as 'Severa.' While he served time and has since transitioned into the 'white hat' security space—earning acknowledgments on bug bounty platforms—his past involvement in the Kelihos botnet is widely documented by news organizations. The business is officially registered as SEVERADAO SECURITY LLC in Florida, but potential clients should weigh his technical expertise against his criminal record.

Antivirus Engines

Clean pass · verified

Clean across 92 engines

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious58Harmless92Engines

Clean

Kaspersky

Clean

Bitdefender

Clean

Microsoft

Not in pass

ESET-NOD32

Not in pass

Avira

Not in pass

Sophos

Clean

Fortinet

Clean

Google Safebrowsing

Clean

Emsisoft

Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check

Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found

Has a contact email on its own domain

Emails on site's domainpeter@severadao.ai

Phone numbersNone

Postal addressNot listed

Linked social profiles1

Signal Summary

Several contact red flags

No phone number listed on the page.
No postal address visible on the page.

Contact email on the site's own domain (peter@severadao.ai).

Domain & Encryption

Encryption Certificate

StatusValid

ProtocolTLSv1.3

IssuerGoogle Trust Services · WE1

ExpiresAug 9, 2026 (47d)

Self-signedNo

Hosting & Technology

HostingCloudflare, Inc.

Server locationUS

Web servercloudflare

Redirect Chain

Hops

Cross-domain

Lookalike

Punycode

1301http://severadao.ai/
2200https://severadao.ai/

Server Reputation

Abuse Intelligence

Confidence score0%

Reports on file0

ISPCloudflare, Inc.

Usage typeContent Delivery Network

Proceed with caution

Our automated review flagged enough risk that you should treat this site as unverified.

Treat severadao.ai as unverified
Do not enter credentials or send money until you have independently verified the business.
Verify the business through independent channels
Check the company's social profiles, registry records, and search for recent news or reviews that are not hosted on the site itself.
Never use irreversible payment methods
Crypto, gift cards, wire transfers, and cash apps offer zero buyer protection. Use a credit card or PayPal if you must pay.
Share your experience
If you have additional context, drop a comment below or post on the MalwareTips forum.
Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing

Not listedCheck ↗

VirusTotal

Not listedCheck ↗

AbuseIPDB

Not listedCheck ↗

Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

fonts.googleapis.com fonts.gstatic.com formsubmit.co linkedin.com static.cloudflareinsights.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

Our automated security review marked severadao.ai as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.
severadao.ai currently scores 55/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.
Yes. severadao.ai presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 47 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
No. All 92 antivirus engines in our malware network report severadao.ai as clean.
No. severadao.ai is not currently listed on the major browser blocklist feeds that modern browsers use.
severadao.ai resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
This is a permanent record of the scan run on June 23, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around severadao.ai have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Final Verdict

Trust / 100

Final Verdict·severadao.ai

SUSPICIOUS

This site offers cybersecurity consulting and penetration testing services operated by a convicted former botnet operator. While the business is legally registered in Florida, the founder's extensive criminal history in cybercrime presents a significant trust paradox for potential clients. Exercise extreme caution before sharing sensitive infrastructure access.

AV engines

MT passes

Net signals

Scan another URL

Security review completemalwaretips.com/url-scan

Recently scanned

Other Suspicious reports

d8t5g9ghubcc73dfaor0.trackturbonest.co.in

c6rhbfhs9j6yoq.growthsummitlabs.com

dainty-cactus-49d4fe.netlify.app

Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…

Loading comments…

This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.