If you landed on vpn-na.splat.nttltd.global.ntt expecting a straightforward VPN login page, the technical details might look fine at first glance. The connection is encrypted, the pages load fast, and there is a privacy policy and terms of service. But for a service that handles authentication credentials, the real question is who you are handing those credentials to. The WHOIS record for this subdomain comes back empty, and there is zero history in the Wayback Machine. That combination is highly unusual for any established VPN provider or enterprise authentication portal. Most legitimate login pages belonging to companies like Citrix or NTT are backed by clear corporate ownership and years of archived presence. The site does have an About page and social media links, but no direct contact information like a phone number or email address on the homepage. For a service asking for login details, the absence of a verifiable operator behind the domain is the most important signal here. Until the organization running vpn-na.splat.nttltd.global.ntt identifies itself openly, treat this as a site to avoid entering personal information into.
No — vpn-na.splat.nttltd.global.ntt doesn't look safe
In plain English
Too little is known about who actually runs this site to trust it with login credentials. While the security setup looks competent and there are legal pages present, the ownership is completely hidden and the site has no trackable history online. I would not enter any personal information here until the operator identifies themselves clearly.
What you should do now
Don't panic. These steps limit the damage, and the sooner you take them the better.
Don't enter any details
No passwords, card numbers or personal information — even if the site looks professional.
Close the tab
Especially if you got here from an email, text message or social media ad.
Already paid? Call your bank
Contact your bank or card provider right away. They can often stop or reverse a recent payment.
Warn others
Report the site and share this check with anyone who sent you the link.
Where the score comes from
The site uses a modern TLS certificate from a trusted issuer, has multiple security headers in place including clickjacking protection, and stays off Google Web Risk blacklists. The foundation is solid for a VPN authentication portal.
The WHOIS query returned nothing useful and the domain name itself looks like an auto-generated subdomain under nttltd.global.ntt. There is no clear ownership information or human-readable business name tied to this specific host.
No history in the Wayback Machine and no listing in website rankings. The site is either brand new or has never had enough activity to get indexed, which is unusual for any legitimate service that expects users to log in.
There is an About page and social media links, but no contact information like email or phone number on the homepage. For a service that asks for credentials, the lack of a direct way to reach the operator is a real gap.
Privacy policy and terms of service are present, which is appropriate for a service handling authentication. The site also provides a legal entity disclosure page, meeting the baseline for regulatory transparency.
DNS resolves cleanly, the server responds quickly, and robots.txt is properly configured. DNSSEC is not enabled and there are no email records, but neither is critical for a VPN authentication endpoint that doesn't send email.
What we checked
Think this verdict is wrong?
Site owners can request a fresh scan. Scores update automatically as signals change.