Skip to content

Aurum Capital (aurum.capital) Security Report & Trust Score

Online Last scanned: March 21, 2026
16 /100 High Risk

Category Corporate

Aurum Capital is a business consulting and advisory firm offering fractional CFO services, business strategy, M&A advisory, and technology solutions to help companies with growth, financing, and operational challenges.

About Aurum Capital

Aurum Capital is a website categorized as Corporate. Aurum Capital is a business consulting and advisory firm offering fractional CFO services, business strategy, M&A advisory, and technology solutions to help companies with growth, financing, and operational challenges. It was last analyzed on March 21, 2026 and currently scores 16/100, which we rate as High Risk.

The domain was registered 10y 11m ago. It is registered through GoDaddy.com, LLC. The registration is set to expire on April 16, 2026. WHOIS privacy protection is enabled, so the registrant details are hidden. The domain is not signed with DNSSEC.

The site is hosted by AS26496 GoDaddy.com, LLC in Phoenix, United States. The server runs Apache. It resolves to the IP address 208.109.226.74.

We found no active warnings for this domain: no engine detections, no regulator alerts and no blocklist entries at the time of the last scan.

With a trust score of 16/100, Aurum Capital sits in the highest-risk band of our scale. Multiple independent signals align with patterns commonly seen on fraudulent platforms. Exercise extreme caution before interacting with this website in any way.

Think you've been scammed? Get a free consultation with cyber-intelligence experts

Your information is secure and confidential.

Is Aurum Capital safe to use?

Based on our last scan on March 21, 2026, Aurum Capital (aurum.capital) has a trust score of 16/100, which we rate as High Risk. Multiple independent signals match patterns commonly seen on fraudulent platforms, so we advise extreme caution before interacting with it in any way.

aurum.capital has been registered for 10y 11m, which is generally a reassuring signal: most disposable scam domains never reach that age. Age alone, however, proves nothing about who operates the website today.

Our infrastructure analysis links Aurum Capital to a network of 13 related domains sharing the same technical fingerprints. Domain clusters like this are frequently operated by scam networks that rotate addresses to stay ahead of blacklists. Review the related domains listed on this page before trusting this website.

The typical playbook of these scams

Think of the scam website as the last stage, not the first. What sets it in motion is human contact: an unsolicited message, a new "friend" from a dating app or messaging group, or a warm introduction on social media. That contact is cultivated patiently, often for weeks or months, until an "exclusive" investment tip feels like a natural next step. The industry name for this drawn-out grooming is pig butchering, a grim reference to fattening the target with trust before the payoff is taken.

With trust established, the target is funneled onto a polished platform whose numbers are pure fiction: the balances, the charts and the returns are all manufactured and steered entirely by the operators. A modest early withdrawal is occasionally allowed, a deliberate move to lower the victim's guard and invite a much bigger deposit. Try to cash out a meaningful amount, though, and everything changes: fresh "taxes", "release fees" or "verification charges" are demanded, the funds are held hostage until those are settled, and whatever you send after that vanishes.

Running in parallel is the clone firm, where scammers dress themselves up as a genuinely licensed business, reusing its name, logo and registration number, while quietly operating from a near-identical domain. It is the reason a stated license is only meaningful once you confirm it on the regulator's own website, and the reason the precise domain name carries just as much weight as the familiar brand shown beside it.

Signals that should make you pause

  • A guide you never asked for: a "coach", acquaintance or new online contact keeps steering you to one named site.
  • Risk-free pitch: profits are framed as safe and dependable, locked-in, sky-high, and supposedly free of any real downside.
  • Constant countdown: a relentless rush to commit, with disappearing bonuses or a deadline that always seems to be today.
  • Private-account transfers: they ask to be paid in cryptocurrency or gift cards, or by sending money straight to a private individual's account.
  • Missing from the register: their claimed authorization does not show up on the regulator's own register, assuming any license is mentioned at all.
  • Funds held back: getting your money out proves difficult, with fresh "taxes", "release fees" or repeated checks standing between you and your funds.
  • Straight-line gains: on screen the profits rise in a straight line, entirely detached from how the real market is moving.

Already lost money? Here is what to do next

  1. Break off every line of communication: step away from the platform and from whoever steered you toward it. Staying in touch only hands them fresh chances to take more, often through a fake "account manager" who pretends to be there to help.
  2. Pay nothing to unlock funds: do not send a single "release fee", "tax" or "unlock charge" to set a withdrawal free. Genuine providers subtract their fees from what you already hold; only fraudsters insist on extra money before you see a cent.
  3. Contact your bank without delay: reach out to your bank or card issuer as soon as you can. Because chargebacks and wire recalls have tight deadlines, acting fast is what gives you a realistic chance of getting money back.
  4. Save the proof: capture screenshots of the platform and your conversations, and hold on to emails, transaction references and any wallet addresses you paid into.
  5. Notify the regulators: alert the cybercrime or consumer-protection authority in your country, along with your national financial regulator.
  6. Distrust recovery pitches: treat any "fund recovery" firm that later promises to retrieve your losses for an advance fee with deep suspicion. Lists of victims are traded around, and this pitch is commonly the same scam coming back for more.

Identity

WHOIS

RegistrarGoDaddy.com, LLC (IANA #146)
CreatedApril 16, 2015
UpdatedMay 31, 2025
ExpiresApril 16, 2026
Domain age10y 11m
DNSSECNot signed
Privacy protectionYes
Nameservers
  • ns15.domaincontrol.com
  • ns16.domaincontrol.com
Status
4 entries
  • client delete prohibited
  • client renew prohibited
  • client transfer prohibited
  • client update prohibited

SSL

CertificateValid
IssuerLet's Encrypt
Subjectaurum.capital
Valid fromMarch 2, 2026
Valid untilMay 31, 2026
Expires inExpired 45 days ago
ProtocolTLSv1.2
CipherECDHE-RSA-AES256-GCM-SHA384
SAN
6 entries
  • aurum.capital
  • cpanel.aurum.capital
  • mail.aurum.capital
  • webdisk.aurum.capital
  • webmail.aurum.capital
  • www.aurum.capital

Server

IP address208.109.226.74
IPv6
ASNAS26496
ProviderAS26496 GoDaddy.com, LLC
CountryUnited States (US)
CityPhoenix
Server softwareApache

Extracted contacts

Contact details found on the site and in regulator warnings, shown for identification only. Do not contact them.

Social profiles

2
  • twitter: @bold_themes
  • facebook: @boldthemes

Screenshot

Screenshot of aurum.capital captured at the last scan
Captured at last scan

Forensics

Page timing

DNS lookup 1 ms
TCP connection 313 ms
TLS handshake 161 ms
Time to first byte 1,494 ms
Content download 6 ms
DOM content loaded 2,667 ms
Load complete 3,103 ms

Network & resources

Total requests 72
Unique domains 3
Total size 4.8 MB
HTTPS 100.0%

Cookies

1
NameDomainFlags
pll_languageaurum.capitalSecure

Technologies

6
  • WordPress cms
  • Tailwind CSS css-framework
  • Bootstrap css-framework
  • WooCommerce ecommerce
  • Apache web-server
  • PHP language

Uptime

Last 30 days

100.0% uptime · 3,039 ms avg response