# cloud-trnst-tools.pages.dev — SUSPICIOUS

> cloud-trnst-tools.pages.dev hosts a credential phishing page mimicking trusted tools. 0/95 scanners flagged it yet—users risk stolen logins.

## Summary
PhishDestroy identifies cloud-trnst-tools.pages.dev as an active credential-phishing domain attempting to harvest user login credentials for popular developer tools. The site masquerades as a legitimate cloud-based trust utility suite, luring visitors into entering their account passwords, API keys, or two-factor authentication codes under the guise of security verification. Once submitted, these credentials are exfiltrated to attacker-controlled servers, enabling unauthorized access to victim accounts and downstream compromise of connected services.  This domain resolves to IP 172.66.47.151, registered through Cloudflare, Inc., and currently carries a Google Trust Services SSL certificate to enhance its appearance of legitimacy. Notably, VirusTotal shows 0/95 detections at this time, indicating it evades current detection engines, and it remains unlisted on public blocklists such as PhishTank or OpenPhish. Such zero-detection status often correlates with newer or evolving phishing infrastructure designed to bypass traditional filters. The active status and lack of community flags suggest imminent or ongoing campaign operations targeting unsuspecting users in the developer and DevOps communities.  If you visited cloud-trnst-tools.pages.dev, refrain from entering any credentials, payment details, or sensitive data. Immediately change passwords for accounts that may have been exposed and enable multi-factor authentication where available. Report the domain to your security team or through platforms like Google Safe Browsing or PhishTank. Use reputable password managers to autofill credentials only on verified sites. Clear browser cache and run a malware scan to ensure no persistent threats remain. Consider notifying your organization’s security operations center if work-related credentials were entered.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.151

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/23bb72cc-17b9-493b-9b5b-07461a298d80
- PhishDestroy: https://phishdestroy.io/domain/cloud-trnst-tools.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/cloud-trnst-tools.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/cloud-trnst-tools.pages.dev/
Last updated: 2026-03-23