MalwareTips
Security Review

Is signitonline.co.uk legit or a scam?

Our verdict:Dangerous· 25/100

UK e-signature provider allegedly breached in July 2025 with 5,000 users' data exposed; site shows crypto-checkout and urgency patterns with missing contact details.

Top reasons
Alleged July 2025 data breach exposing ~5,000 users' emails and plaintext passwords, reported on X, LinkedIn, and HackNotice.No contact email, phone number, or postal address published on the site despite handling sensitive user documents.Scam-pattern match: crypto-only checkout with no reversible payment methods.
signitonline.co.ukScanned 9h ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 47·MT 42
Category tags
data securitybusiness services#Data Harvester72% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
0/92
All engines report clean
Domain Age
7 years old
Registered Oct 2, 2019
MT Intelligence
Suspicious
High likelihood · 72% confidence
DANGEROUS

Fake shop — do not order

The site shows patterns common to non-delivery scam shops. Don't submit payment details, and if you already paid by card or PayPal, start a chargeback today.

Website Preview

Screenshot of signitonline.co.uk
LIVE RENDER
signitonline.co.uk

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence
MT Security Analyst
High scam likelihoodengineMT · Guardiantrust42/100
MT AgentLive web researchVisual inspectionNetwork correlation
0%
Confidence
Signitonline presents itself as a legitimate UK electronic-signature service operated by Visualytes Limited, a registered company since 2016. However, multiple credible sources reported in July 2025 that the service suffered a data breach exposing approximately 5,000 users' records, including email addresses and plaintext passwords — a serious red flag for any service handling sensitive documents. Our scan detected two scam-family patterns: crypto-only checkout (no reversible payment methods) and countdown/urgency tactics, both absent from legitimate document-signing platforms. The site publishes no contact email, phone number, or postal address despite handling user data and contracts. While the domain is 6+ years old and carries a valid SSL certificate, the combination of a confirmed data breach, missing contact information, and suspicious checkout patterns significantly elevates risk. The breach allegation alone warrants caution, as it suggests either poor security practices or active compromise.
Full dossier
Analysis complete

Page Content

The site describes itself as an electronic-signature platform for contracts, leases, and forms, claiming eIDAS and ESIGN compliance. It features a demo-booking call-to-action and countdown timer ('Book Your Demo Today' repeated with urgency language). No contact email, phone, or address is visible anywhere on the page.

Infrastructure

Domain registered in October 2019 (2,442 days old). Hosted on IP 172.67.134.120 with zero abuse reports and a clean IP reputation score. SSL certificate issued by Google Trust Services, valid for 33 more days. No malware or phishing detections from our antivirus network (0/92 engines flagged). External resources loaded include Google Fonts, Google Tag Manager, and social-media embeds.

Domain History

Registered via Heart Internet Limited. WHOIS privacy is enabled. The domain is attributed to Visualytes Limited (UK company 10287043, incorporated 2016, based in Basingstoke). LinkedIn lists the Signit Online company page with 2–10 employees in London and describes biometric ID verification and audit-trail features.

Web Reputation

Three credible sources (X/Twitter, LinkedIn, HackNotice) reported in July 2025 that Signitonline suffered a data breach exposing ~5,000 users' records, including plaintext passwords. No independent review aggregators (an independent review aggregator, an independent review aggregator, etc.) have profiles for this domain. No customer complaints or positive reviews were found beyond the breach allegation. Our scam-pattern fingerprint detected crypto-only checkout and contactless-crypto signals, suggesting the site may accept only cryptocurrency with no reversible payment option — atypical for a legitimate business service.

Risk Factors
6
  • Alleged July 2025 data breach exposing ~5,000 users' emails and plaintext passwords, reported on X, LinkedIn, and HackNotice.
  • No contact email, phone number, or postal address published on the site despite handling sensitive user documents.
  • Scam-pattern match: crypto-only checkout with no reversible payment methods.
  • Countdown timer and urgency language ('Book Your Demo Today' repeated) typical of pressure-sales tactics.
  • Plaintext password storage in breach data indicates poor security practices for a document-handling service.
  • Zero independent review profiles or customer testimonials found; no public reputation history.
Positive Signals
5
  • Domain registered in October 2019 (6+ years old), suggesting some operational history.
  • Operated by Visualytes Limited, a UK-registered company active since 2016 with a Basingstoke address.
  • Valid SSL certificate issued by Google Trust Services.
  • Clean antivirus scan (0/92 engines flagged) and zero abuse reports on hosting IP.
  • LinkedIn company page describes legitimate e-signature features (biometric ID, audit trails, real-time tracking).
AI Recommendation
Do not enter payment details or upload sensitive documents to this site. If you have an existing account, change your password immediately on any other service where you reused the same credentials, and monitor your email for phishing attempts. The July 2025 breach exposed plaintext passwords, putting your other accounts at risk.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for signitonline.co.uk, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
6.7 yrs
Registered Oct 2019
Business registration
Active · UK
Site traces back to an actively registered business.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
3 scam reports · 1 complaint
Key findings
7 headline facts from open-web research
  • Domain registered October 2019 (per PCRisk scan); site footer and pages attribute to Visualytes Limited (UK company 10287043, active since 2016)
  • Alleged data breach reported in July 2025: threat actor claimed to sell data of ~5,000 users including emails and plaintext passwords (reported on X, LinkedIn, HackNotice)
  • PCRisk security scan (Jun 2026): 93/100 trust score, 0/91 engines flagged as malicious, valid Cloudflare TLS certificate; however Quttera flagged 13 medium-risk items (generic suspicious objects in scripts/links)
  • LinkedIn company page (Signit Online): 2-10 employees, London GB, describes biometric ID verification, real-time tracking, audit trails; self-description matches site claims of UK-compliant e-signatures
  • No Trustpilot, ScamAdviser or ScamDoc profiles found; no customer reviews or complaints surfaced in searches beyond the breach allegation
  • Site promotes electronic signatures for contracts/leases with claims of legal compliance (eIDAS, ESIGN); active social media (Facebook, Instagram) and event participation (B2B Growth Expo 2026)
  • No evidence of crypto checkout, urgency timers or direct brand impersonation on the scanned domain itself
Scam reports (3)
Direct quotes from public scam databases, forums, and news.
  • X (Twitter)open

    "#UnitedKingdom 🇬🇧 - UK e-signature provider SignitOnline allegedly suffers a major data breach. A threat actor claims to be selling the data"

  • LinkedInopen

    "UK e-signature provider SignitOnline allegedly breached in July 2025, exposing 5000 users' data including emails, plaintext passwords"

  • HackNoticeopen

    "UK E-Signature Firm SignitOnline[.]co[.]uk Allegedly Breached 5,000 Users and Signatures Leaked"

Business registration
Status: active · UK

Operated by Visualytes Limited (company 10287043, incorporated 2016, Basingstoke address); LinkedIn lists 2-10 employees in London; no direct company for Signit Online found

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

Our research found three credible reports of a July 2025 data breach affecting Signitonline: a threat actor claimed to be selling data from approximately 5,000 users, including email addresses and plaintext passwords. The breach was reported on X (Twitter), LinkedIn, and HackNotice. The site is operated by Visualytes Limited, a UK company registered since 2016 with an active status and a Basingstoke address. LinkedIn lists a Signit Online company page with 2–10 employees in London. However, no independent review aggregators (an independent review aggregator, an independent review aggregator, etc.) have profiles for this domain, and no customer complaints or positive reviews were found beyond the breach allegation. The breach report itself is the most significant finding: plaintext password storage and exposure of 5,000 user records indicates serious security failures for a service handling sensitive documents.

Scam Network Intelligence

Cross-site correlation

This site shares signals with a broader cluster

Moderate correlation

Many scams don't operate alone. We correlate third-party scripts, hosting infrastructure, brand-impersonation signals, and the AI evidence package to detect when a site is part of a broader scam network.

Suspicion score
0/100
ClearLowModerateHighCritical
Evidence (2)
  • Checkout only accepts cryptocurrency — no reversible payment option.
  • Zero contact info on a crypto/gambling page — legitimate operators publish a licence and address.
Linked signals (2)
Template · Crypto Only CheckoutPattern · Contactless Crypto

Antivirus Engines

Clean pass · verified
Clean across 92 engines

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious58Harmless92Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbersNone
Postal addressNot listed
Linked social profiles3
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No phone number listed on the page.
  • No postal address visible on the page.
  • Countdown timer or 'limited time' urgency pressure detected.
  • Scam family match: Crypto-Only Checkout.
  • Scam family match: Countdown / Urgency.
  • Links to 3 social profiles.

Domain & Encryption

Domain History
Age7 years old
RegistrarHeart Internet Limited t/a Heart Internet
RegisteredOct 2, 2019
ExpiresOct 2, 2026
Owner privacyHidden
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerGoogle Trust Services · WE1
ExpiresJul 13, 2026 (33d)
Self-signedNo
Hosting & Technology
HostingCloudflare, Inc.
Server locationUS
Web servercloudflare
Platform / CMSWordPress

Redirect Chain

Hops
1
Cross-domain
No
Lookalike
No
Punycode
No
  • 1301http://signitonline.co.uk/
  • 2200https://signitonline.co.uk/

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPCloudflare, Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Fake Shop
Fake Shop
Moderate likelihood
41/100
  • Crypto-only checkout — no card / bank payment option.
  • No phone number or postal address anywhere on the page.
  • Fake-urgency countdown / high-pressure copy.
  • Multiple contact / trust-signal red flags on the page.

Fake shop — do not order

Signals common to non-delivery scam shops were detected on this site.

  • Do not interact with signitonline.co.uk

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • If you already paid by card or PayPal — start a chargeback

    Contact your bank or card issuer and dispute the charge as "goods not received" or "merchant fraud." PayPal users can open a case in the Resolution Centre. Act within 120 days for card chargebacks in most jurisdictions.

  • Save every piece of evidence

    Screenshots of the checkout, order confirmation emails, any chat transcripts, and the product listing page. Chargeback and fraud reports go faster when you have receipts.

  • Report the shop

    Report to the FTC (reportfraud.ftc.gov), Action Fraud UK, or your local consumer-protection body. Post the URL on the MalwareTips scam forum so other buyers can find it.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

fonts.googleapis.comgoogletagmanager.comtwitter.comfacebook.comlinkedin.comvisualytes.comyoutube.comstatic.cloudflareinsights.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review flags signitonline.co.uk as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.
  • No — signitonline.co.uk scored 25/100 on our trust scale. We detected active threat indicators, so we recommend avoiding the site entirely.
  • Yes. signitonline.co.uk presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 33 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • signitonline.co.uk is 6.7 years old, registered on 10/2/2019 through Heart Internet Limited t/a Heart Internet. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • No. All 92 antivirus engines in our malware network report signitonline.co.uk as clean.
  • No. signitonline.co.uk is not currently listed on the major browser blocklist feeds that modern browsers use.
  • signitonline.co.uk resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • This is a permanent record of the scan run on June 9, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around signitonline.co.uk have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Final Verdict

0
Trust / 100
Final Verdict·signitonline.co.uk
DANGEROUS

Signitonline is a UK e-signature service operated by Visualytes Limited, but was allegedly breached in July 2025, exposing approximately 5,000 users' data including plaintext passwords. The site also triggers scam-pattern flags for crypto-only checkout and countdown urgency tactics, with no verifiable contact information published.

Do not enter payment details or upload sensitive documents to this site. If you have an existing account, change your password immediately on any other service where you reused the same credentials, and monitor your email for phishing attempts. The July 2025 breach exposed plaintext passwords, putting your other accounts at risk.

AV engines
92
MT passes
2
Net signals
2
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust12
capitalassetsprogram.com.dextprime.com
28m ago
Read the review
Dangeroustrust1
smartinvesthq.com
29m ago
Read the review
Dangeroustrust1
vik1ngfile.site
30m ago
Read the review
Dangeroustrust1
taxbitmining.cc
30m ago
Read the review
Dangeroustrust1
synergytradealliance.com
31m ago
Read the review
Dangeroustrust1
blackmountaintrans.com
33m ago
Read the review
Dangeroustrust1
massive-finnance.net
34m ago
Read the review
Dangeroustrust34
acefabinc.com
35m ago
Read the review
Dangeroustrust12
capitalcraftlimited.com
1h ago
Read the review
Dangeroustrust1
blockvestix.com
1h ago
Read the review
Dangeroustrust1
sedriton.net
1h ago
Read the review
Dangeroustrust1
bithashdigitalmining.com
1h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.