# auth-kraken-app--cdn.pages.dev — MALICIOUS

> auth-kraken-app--cdn.pages.dev is flagged for phishing and social engineering. Avoid interaction; the domain is currently offline.

## Summary
PhishDestroy identifies auth-kraken-app--cdn.pages.dev as a high-risk generic phishing domain designed to deceive users and steal sensitive information. Phishing threats like this pose significant risks by impersonating legitimate services to harvest credentials or personal data.

This domain was registered on February 21, 2026, through Cloudflare, Inc., and appeared on three notable security blocklists. VirusTotal analysis shows that 14 out of 95 security vendors have flagged this domain, and Google Safe Browsing categorizes it under social engineering threats. Although currently taken offline, its infrastructure leveraged Cloudflare's CDN services, which often complicate immediate takedown efforts.

Users should avoid interacting with emails or messages containing links to this domain and remain vigilant for suspicious requests for information. Ensuring browser and email security filters are up to date can provide additional protection. If contacted through this domain or similar variants, users should report the incident to their IT or security teams and refrain from providing any credentials or personal information.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Target brand: Kraken
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.110
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["greg.ns.cloudflare.com", "leah.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019aa8e4-0cdf-73ac-8289-7c9f722a47ce.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/32f2a5eb-5b16-45fd-9f6e-2a02fbbe1c7e
- PhishDestroy: https://phishdestroy.io/domain/auth-kraken-app--cdn.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/auth-kraken-app--cdn.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/auth-kraken-app--cdn.pages.dev/
Last updated: 2026-03-19