We understand that having a website listed in a directory even after ceasing collaboration with them may pose certain risks. This is precisely why we use such text in the snippet, so that search engines explicitly state that we no longer work with them. This page remains accessible so that users can read reviews from others or share their own experiences of working with them.
But the page contains links and information to a phishing page on a domain with a .cc extension, which is not under the control of the regular exch.cx exchange.
In this particular case, you are directly harming your users, because you present the phishing domain as the official page of an exchange. It is enough just to remove all links or names where the .cc extension is mentioned (I also saw a few in the reviews.). You do not have to delete feedback or any reviews.
If a user like @brett6934 ever appears and accuses you of complicity in fraud, you can't say it's not up to you, because the exchange is delisted and you don't follow it, so you don't have accurate information.
This very discussion can be considered that you have been informed, and if you don't remove it, the only thing that can be concluded is that you are deliberately hiding it and neglecting the welfare of your users.
I'm a little disappointed that you need any further explanation at all for things like this. I thought you had zero tolerance for any kind of fraud.