# chaitanybhute.github.io — MALICIOUS

> chaitanybhute.github.io hosts a fake login portal phishing site. 14/95 VirusTotal vendors flag this domain. Check the full report.

## Summary
PhishDestroy identifies chaitanybhute.github.io as running an active fake-login-portal phishing operation targeting unsuspecting users. The page mimics a legitimate authentication interface to harvest credentials. Risk level is elevated due to the presence of live phishing content and multiple security-vendor detections.

This domain was flagged by 14 of 95 VirusTotal security vendors, placing it above the industry threshold for phishing pages. It is registered through GitHub, Inc., resolving to IP 185.199.108.153 via a valid Let’s Encrypt SSL certificate. GitHub’s Pages service is being abused to host the phishing content, leveraging the platform’s trusted infrastructure to evade traditional domain-based filters. Historical checks reveal the phishing kit has been active since the seed date f53eff, with no evidence of takedown to date.

Mitigation begins with immediate network-level blocking of 185.199.108.153 and the domain chaitanybhute.github.io. Users should clear cached credentials and avoid re-entering passwords on any page linked from this domain. Report the URL to your security team and to GitHub Trust & Safety via their abuse form. Organizations should update browser policies to block GitHub Pages domains hosting login forms and deploy real-time phishing detection rules targeting credential-harvesting patterns.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 14 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/871719d5-afc1-445b-bc83-2adf51776e95
- PhishDestroy: https://phishdestroy.io/domain/chaitanybhute.github.io/
- LLM endpoint: https://phishdestroy.io/domain/chaitanybhute.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/chaitanybhute.github.io/
Last updated: 2026-03-26