0/100

medium Risk

akbank.com

https://akbank.com

217.169.195.90

Location

Istanbul, Türkiye

Domain Age

11033 days

HTTP

200 · 41.2s

SSL

Valid· DigiCert EV RSA CA G2, DigiCert Inc, US

Status

COMPLETED

Visual Evidence

Zoom

Title: "Bireysel Bankacılık - Akbank"

Save

Take this site down

Report to 50+ vendors instantly

KB/IOK Matches (0)—

No KB/IOK detections were recorded for this scan.

AKBANK

Unknown

Finance & Banking · 4/15/2026

Summary

The page presents Akbank branding with Turkish language content and a visible Akbank logo, suggesting it is Akbank's site. However, domain intelligence flags a typosquat risk (akbank vs usbank) and the final URL is https://www.akbank.com/ with certificate issued to Akbank and long domain age, indicating potentially legitimate ownership. Despite typosquat concern, the page appears to be Akbank's official site; no clear credential harvesting form or malicious payload is observed in the static HTML screenshot, though numerous external analytics scripts and iframes are present. The evidence is not conclusive for phishing at this time; monitor for impersonation signals and verify domain integrity over time.

Evidence Summary

▸Observed 2 capture stage(s); canonical stage is settled_render.

▸POST targets observed during capture: https://www.google-analytics.com/g/collect?v=2&tid=G-TJREMLTVWH&gtm=45je6461v880909922z8862136170za20gzb862136170zd862136170&_p=1775655081579&gcs=G100&gcd=13p3p3p3p5l1&npa=1&dma_cps=-&dma=0&are=1&cid=1026750429.1775655082&frm=0&pscdl=denied&sr=1280x720&uaa=x86&uab=64&uafvl=Not%253AA-Brand%3B99.0.0.0%7CHeadlessChrome%3B145.0.7632.6%7CChromium%3B145.0.7632.6&uam=&uamb=0&uap=Windows&uapv=10.0&uaw=0&ul=en-us&_s=1&tag_exp=0~115616986~115938466~115938469~116991817~117884344&sid=1775655082&sct=1&seg=0&dl=https%3A%2F%2Fwww.akbank.com%2F&dt=Bireysel%20Bankac%C4%B1l%C4%B1k%20-%20Akbank&en=page_view&_fv=1&_ss=1&ep.content_group=Ana%20Sayfa&tfd=2899, https://www.akbank.com/_layouts/15/Akbank/search/Ajax.aspx/GetDirectOpenInfos, https://www.akbank.com/_layouts/15/Akbank/CalcTools/Ajax.aspx/GetCreditInfo.

▸Distinctive asset clues: initstrings.js, theming.js, corev15.css, animation.min.css, calender-success.svg, money-deposit.svg.

Capture

Stages: 2

Canonical: Settled Render

Changed: No

Credential Signals

Forms: 1

Password fields: 0

Late-stage login UI: No

Resource Signals

Resources: 151

Hosts: 12

Domains: 7

Suspicious Endpoints

hxxps://www[.]akbank[.]com/_api/SP.Web.GetContextWebThemeData?lcid=1055

hxxps://www[.]akbank[.]com/_api/sp.web.getcontextwebthemedata?lcid=1055

hxxps://www[.]akbank[.]com/

Observed Signals (2)

Presence of external analytics/tracking scripts and iframes (potential for data exfiltration, not evidence of credential theft).Typosquatting risk identified by domain similarity analysis (akbank vs usbank).

Observed Indicators (1)

▸Domain intelligence flag: TYPOSQUAT DETECTED: akbank vs usbank

Risk AssessmentUsed in abuse reports

The scan indicates potential impersonation risk due to a typosquat signal for akbank against US Bank, but the hostname resolves to the official Akbank domain with an EV SSL certificate. The page shows Akbank branding and content, with multiple analytics and internal API requests. There is no concrete evidence of credential theft or malware delivery in the captured data, though the presence of hidden form inputs and iframes warrants closer scrutiny for possible abuse. Recommend ongoing monitoring and domain integrity validation; if any impersonation signals strengthen (e.g., mismatched branding on a non-official domain), escalate.

Recommended Action

Monitor

Cross-Reference8

URL Intelligence