# cerberuxcc.cc — MALICIOUS > cerberuxcc.cc is distributing a Microsoft 365 credential phishing page. With 5/95 VirusTotal flags, act now. Check the full report. ## Summary PhishDestroy identifies cerberuxcc.cc as an active credential phishing domain masquerading as Microsoft 365 login pages. This domain represents an elevated risk due to its current campaign activity and the presence of functional phishing infrastructure. The site is designed to harvest corporate and personal credentials under the guise of authentic Microsoft authentication portals, making it a high-impact threat to organizations and individuals relying on Microsoft services for authentication and collaboration. This domain was flagged by 5 out of 95 VirusTotal security vendors, indicating partial detection across the threat intelligence community. The domain resolves to IP address 188.114.96.3 and was registered on June 23, 2025 through NICENIC INTERNATIONAL GROUP CO., LIMITED. Despite its recent creation—just days ago—it already leverages a Google Trust Services SSL certificate, which may enhance its credibility in phishing lures. The certificate issuance suggests an attempt to appear legitimate, potentially tricking users who rely on HTTPS indicators as a sign of safety. The combination of a modern SSL certificate, newly registered domain, and partial detection coverage highlights a sophisticated and rapidly deployed threat. To mitigate risk, users should avoid accessing cerberuxcc.cc and treat any communications referencing it as potentially malicious. Organizations should immediately block the domain and IP 188.114.96.3 at the network perimeter. Microsoft 365 users must be alerted to verify login URLs directly via official Microsoft domains (login.microsoftonline.com) and enable multi-factor authentication (MFA) to reduce the impact of credential theft. Always inspect email links by hovering (without clicking) and report suspicious messages to your IT security team. Proactive user education and technical controls are essential to prevent successful phishing exploitation. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2025-06-23 13:44:38 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 188.114.96.3 ## Detection Status - VirusTotal: 5 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/e601db54-f167-4358-9556-4be9800cd531 - PhishDestroy: https://phishdestroy.io/domain/cerberuxcc.cc/ - LLM endpoint: https://phishdestroy.io/domain/cerberuxcc.cc/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/cerberuxcc.cc/ Last updated: 2026-03-23