# alturasb.org — MALICIOUS

> alturasb.org is a phishing domain flagged by 9 of 95 VirusTotal vendors. This site poses an elevated risk by impersonating a legitimate entity.

## Summary
PhishDestroy identifies alturasb.org as an active phishing domain posing an elevated threat as of June 2025. This domain is currently engaged in a malicious campaign to deceive users into divulging sensitive credentials or downloading malware under the guise of a trusted entity. No specific brand impersonation has been confirmed at this stage, but the threat type remains identified as generic phishing with active delivery mechanisms.    This domain was flagged by 9 of 95 VirusTotal security vendors, indicating a high likelihood of malicious intent. It was registered through Dynadot Inc on March 14, 2026, and resolves to IP address 198.251.84.200. The domain utilizes a Let's Encrypt SSL certificate, which may lend a false sense of legitimacy to potential victims. These factors collectively contribute to its elevated risk classification and growing presence on blocklists.    The campaign is currently active, and this domain should be considered HIGH RISK. Users are strongly advised to avoid accessing alturasb.org or any associated subdomains. Organizations should immediately block the domain and IP 198.251.84.200 at the network perimeter. Security teams are urged to conduct endpoint scans for any signs of prior compromise linked to this domain. Report indicators to threat intelligence platforms such as PhishDestroy or CISA’s AA25-164A portal to aid in broader defense efforts.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-14 07:35:41
- Registrar: Dynadot Inc
- IP: 198.251.84.200

## Detection Status
- VirusTotal: 9 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/66e31de5-d91d-4aa3-b2d9-17eb3a379765
- PhishDestroy: https://phishdestroy.io/domain/alturasb.org/
- LLM endpoint: https://phishdestroy.io/domain/alturasb.org/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/alturasb.org/
Last updated: 2026-03-23