# ad-account-security-audit-hub.pages.dev — MALICIOUS

> ad-account-security-audit-hub.pages.dev is a credential phishing site impersonating Google Account Security.

## Summary
PhishDestroy identifies the domain ad-account-security-audit-hub.pages.dev as a high-risk credential phishing site currently active and targeting Google Account users under the guise of a security audit hub.

This domain is flagged by 20 of 95 VirusTotal security vendors, listed on one security blocklist, and flagged by Google Safe Browsing under the category SOCIAL_ENGINEERING. The domain resolves to IP address 172.66.44.195 and is registered through Cloudflare, Inc., leveraging Google Trust Services for its SSL certificate. Additionally, the domain is blocked by prominent threat intelligence feeds such as OpenPhish.

Given its active status and strong indicators of compromise, users are advised to avoid accessing ad-account-security-audit-hub.pages.dev entirely. Organizations and individuals should update their threat intelligence platforms with this domain and IP address to ensure proactive blocking. If credentials were inadvertently entered, users should immediately change their passwords and enable multi-factor authentication on their Google accounts. Security teams are encouraged to monitor network traffic for connections to this IP or domain and investigate any potential compromises within their environments.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.195

## Detection Status
- VirusTotal: 20 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["OpenPhish"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/3cf52934-9c8e-4133-9cd8-4e7d03039919
- PhishDestroy: https://phishdestroy.io/domain/ad-account-security-audit-hub.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ad-account-security-audit-hub.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ad-account-security-audit-hub.pages.dev/
Last updated: 2026-03-31