# dydxexchange.pages.dev — SUSPICIOUS > dydxexchange.pages.dev is a brand impersonation threat targeting dYdX users with social engineering tactics. Verify safety status on PhishDestroy. ## Summary PhishDestroy identifies dydxexchange.pages.dev as an active brand impersonation threat targeting the dYdX cryptocurrency platform. This domain is designed to deceive users by mimicking the legitimate dYdX brand, potentially to harvest login credentials or facilitate unauthorized access. There is no direct evidence of a specific crypto drainer kit in use, but the social engineering nature of the attack implies a high risk for credential theft and subsequent asset compromise. dydxexchange.pages.dev currently has a VirusTotal detection score of 0 out of 95, indicating it has not yet been flagged by antivirus engines. However, it is registered through Cloudflare, Inc., and resolves to the IP address 188.114.96.3. The domain is listed on six security blocklists and is flagged by Google Safe Browsing under the category SOCIAL_ENGINEERING. Furthermore, it is actively blocked by notable security services including Polkadot, Codeesura, MetaMask, SEAL, and ScamSniffer, highlighting widespread recognition of its threat. The domain remains active and presents an elevated risk to potential users, especially those interacting with dYdX services. Immediate caution is advised; users should avoid interacting with this domain and verify any dYdX-related URLs through trusted sources. Security teams should monitor this domain and update blocklists accordingly. PhishDestroy recommends continuous vigilance and encourages users to confirm the legitimacy of any suspicious domains impersonating dYdX to prevent credential theft and financial losses. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: dYdX ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 6 hits Lists: ["Polkadot", "Codeesura", "MetaMask", "SEAL", "ScamSniffer", "Enkrypt"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/fd3ad0c6-40fb-4d7d-8c8e-10bc0fad8c8a - PhishDestroy: https://phishdestroy.io/domain/dydxexchange.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/dydxexchange.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/dydxexchange.pages.dev/ Last updated: 2026-03-30