# bitget-x-lgn.pages.dev — SUSPICIOUS

> bitget-x-lgn.pages.dev is a Bitget impersonation phishing site, flagged by 1 of 95 VirusTotal scanners. Review the full investigation to stay protected.

## Summary
bitget-x-lgn.pages.dev — Brand Impersonation Phishing Investigation Report

PhishDestroy identifies bitget-x-lgn.pages.dev as an active brand impersonation phishing domain targeting Bitget, a global cryptocurrency exchange. This fraudulent site leverages Bitget’s branding to deceive users into entering sensitive credentials or financial data. The threat is classified as elevated due to the combination of active hosting, impersonation tactics, and minimal detection coverage at the time of analysis. Monitoring indicates this domain remains operational as of the latest scan, with no evidence of takedown or mitigation efforts by the hosting provider or domain registrar.

This domain was flagged by 1 of 95 VirusTotal security vendors, indicating low initial detection but confirming malicious activity through independent analysis. Registered through Cloudflare, Inc., the domain resolves to IP address 188.114.97.3, which is associated with Cloudflare’s infrastructure. The SSL certificate is issued by Google Trust Services, a detail often exploited in phishing campaigns to lend false legitimacy. While the precise domain creation date is not publicly documented, the combination of low blocklist presence and high-risk indicators such as impersonation and minimal vendor detection suggests a recently activated threat vector.

Users are strongly advised to avoid interacting with bitget-x-lgn.pages.dev and to verify all URLs before entering credentials or payment information. Cryptocurrency platforms like Bitget are frequent targets of impersonation, so users should confirm domains via official channels and enable multi-factor authentication. Organizations should update threat intelligence feeds and firewall rules to block 188.114.97.3 and related infrastructure. Report suspicious activity to Bitget’s official fraud reporting channels and consider using DNS filtering solutions to prevent access to known malicious domains.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Bitget

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/cf0e30a8-a913-43a0-864c-7245b212e477
- PhishDestroy: https://phishdestroy.io/domain/bitget-x-lgn.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/bitget-x-lgn.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/bitget-x-lgn.pages.dev/
Last updated: 2026-03-22