# credit-blockfi.webflow.io — MALICIOUS

> credit-blockfi.webflow.io is a high-risk phishing domain impersonating BlockFi login. Avoid interaction and verify site authenticity immediately.

## Summary
PhishDestroy identifies credit-blockfi.webflow.io as an active phishing domain impersonating the legitimate BlockFi login portal. Classified under generic phishing threats, this domain aims to deceive users into submitting sensitive credentials by mimicking a trusted cryptocurrency platform interface. The use of a reputable brand name in the page title "BlockFi | Login" is a tactic to lure victims into a false sense of security.

Technical analysis reveals the domain was created recently on March 12, 2026, hosted on the Webflow.io platform. It is currently listed on at least one security blocklist and flagged by 18 out of 95 security vendors on VirusTotal, indicating significant malicious activity. The domain infrastructure leverages a popular web hosting service to blend in with legitimate web properties, complicating detection efforts.

At present, credit-blockfi.webflow.io remains active and poses a high risk to users attempting to access their BlockFi accounts. Security professionals and end users are advised to avoid engaging with this domain and report any suspicious activity. PhishDestroy recommends continuous monitoring and immediate blocking measures to mitigate potential credential theft or financial fraud associated with this phishing campaign.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: BlockFi | Login

## Domain Intelligence
- Registered: 2026-03-12 13:07:01
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 18 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "LevelBlue", "Lionic", "Netcraft", "OpenPhish", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019c95eb-cf13-723d-8d14-e7c9e108a5f9.png
- PhishDestroy: https://phishdestroy.io/domain/credit-blockfi.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/credit-blockfi.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/credit-blockfi.webflow.io/
Last updated: 2026-03-19