All in one tweet, for ease of use: 1. @megaeth_labs is geoblocking nft dot megaeth dot com via cloudflare before the SSL/TLS handshake 2. Triggers browser / AV warnings bc they rightly hate insecure connections and then getting picked up in the malicious site lists (e.g. you can't post the subdomain directly on twitter for this reason) 3. I think they should both geoblock at HTTP level post SSL handshake & redirect to an explanatory note that explains that they are geoblocking 4. They reached out, I shared these tips with them in case helpful