# commit-b96c830db0f50cc4.appwrite.network — MALICIOUS

> Stay safe online. The domain commit-b96c830db0f50cc4.appwrite.network impersonated LinkedIn and is now offline after being flagged for phishing.

## Summary
PhishDestroy identifies commit-b96c830db0f50cc4.appwrite.network as a high-risk phishing domain targeting LinkedIn users. The domain posed significant danger due to brand impersonation tactics aimed at stealing credentials.

This domain mimicked LinkedIn's login page and was flagged by 20 out of 95 security vendors. Registered via GoDaddy on June 28, 2022, it resolved to IP 151.101.3.52 and appeared on multiple security blocklists before being taken offline.

Users are advised to avoid interacting with suspicious LinkedIn login pages and verify URL authenticity. Organizations should update blocklists and educate employees about this threat to prevent credential compromise.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Target brand: LinkedIn
- Page title: LinkedIn Login, Sign in | LinkedIn

## Domain Intelligence
- Registered: 2022-06-28 00:00:00
- Expires: 2027-06-28 00:00:00
- Registrar: GoDaddy.com, LLC
- Country: US
- IP: 2a04:4e42:200::820
- IP Org: Cloudflare CDN
- Nameservers: rosalyn.ns.cloudflare.com renan.ns.cloudflare.com
- SSL Issuer: Certainly / Certainly Intermediate R1

## Detection Status
- VirusTotal: 20 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "Certego", "CRDF", "CyRadar", "Ermes", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "Phishing Database", "SOCRadar", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ad9dc-3e8e-73e8-be46-4aeb8c4e2afd.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/2c850a0c-7571-4d49-af19-ed9d30f46839
- Wayback Machine: https://web.archive.org/web/https://commit-b96c830db0f50cc4.appwrite.network
- PhishDestroy: https://phishdestroy.io/domain/commit-b96c830db0f50cc4.appwrite.network/
- LLM endpoint: https://phishdestroy.io/domain/commit-b96c830db0f50cc4.appwrite.network/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/commit-b96c830db0f50cc4.appwrite.network/
Last updated: 2026-03-19