# apex-hold.pages.dev — MALICIOUS

> Discover why apex-hold.pages.dev is flagged for phishing and what risks it poses. Learn about its status and safety measures here.

## Summary
PhishDestroy identifies apex-hold.pages.dev as a high-risk phishing domain designed to deceive users. The site has been associated with generic phishing attacks aimed at stealing sensitive information.

The domain was registered on February 21, 2026, using Cloudflare, Inc. It appears on multiple security blocklists and has been flagged by 15 out of 95 security vendors on VirusTotal. The infrastructure suggests a typical setup for phishing campaigns leveraging reputable hosting.

Currently, apex-hold.pages.dev is offline, reducing immediate threat exposure. Users are advised to remain cautious of similar URLs and ensure their security solutions are up to date to prevent potential phishing attempts.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.112
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["jade.ns.cloudflare.com", "ryan.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["Criminal IP", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Netcraft", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "PhishingDB"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019caa1f-245b-73f9-ae1e-d9a6276cabc3.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/935b6988-a2bd-4041-aa8b-b01ab895e451
- PhishDestroy: https://phishdestroy.io/domain/apex-hold.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/apex-hold.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/apex-hold.pages.dev/
Last updated: 2026-03-19