# caixadirecta-sinal.com — MALICIOUS > caixadirecta-sinal.com is a credential theft site impersonating CaixaBank, flagged by 12/95 security vendors. Avoid entering sensitive data. ## Summary PhishDestroy identifies caixadirecta-sinal.com as a credential theft domain actively mimicking legitimate banking login interfaces to harvest user credentials and sensitive financial information. This site specifically targets customers of CaixaBank by presenting a fraudulent replica of their online banking portal, tricking users into entering their login credentials, which are then captured by the attackers for unauthorized access to banking accounts. The domain’s naming structure further enhances its deceptive appearance, leveraging the trusted 'caixadirecta' prefix commonly associated with CaixaBank’s official services. This domain was flagged by 12 out of 95 security vendors on VirusTotal, indicating a significant but not universal detection rate. Registered through OwnRegistrar, Inc., caixadirecta-sinal.com was created on April 14, 2026, making it a recently deployed threat with minimal historical scrutiny. The presence of a Let’s Encrypt SSL certificate adds a veneer of legitimacy, as many users associate HTTPS with trustworthiness, despite the domain’s malicious intent. Analysis of the IP resolution (104.21.33.3) and registrar details corroborates its suspicious nature, as automated registration services are frequently exploited by cybercriminals to rapidly deploy phishing infrastructure with minimal oversight. If you have visited caixadirecta-sinal.com, immediately cease any interaction and do not enter any credentials or personal information. Check your banking accounts for unauthorized transactions and enable two-factor authentication if not already active. Report the domain to your bank’s fraud department and consider changing passwords for all critical accounts, particularly financial services. Use a reputable antivirus or security tool to scan your device for malware or keyloggers that may have been installed as a result of your visit. Forward the domain to your bank for blocking and submit it to browser blocklists via tools like uBlock Origin or browser-based phishing warnings to help protect others from this credential theft site. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-04-14 13:33:58 - Registrar: OwnRegistrar, Inc. - IP: 104.21.33.3 ## Detection Status - VirusTotal: 12 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/ec458bfe-67a4-400f-bae5-6b5a6bc4b29c - PhishDestroy: https://phishdestroy.io/domain/caixadirecta-sinal.com/ - LLM endpoint: https://phishdestroy.io/domain/caixadirecta-sinal.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/caixadirecta-sinal.com/ Last updated: 2026-04-15