# e--n-bridge-io.pages.dev — SUSPICIOUS > PhishDestroy identifies e--n-bridge-io.pages.dev hosting a fake File Sharing Service phishing page to harvest credentials. Check the full report. ## Summary PhishDestroy identifies the domain e--n-bridge-io.pages.dev as an active generic phishing infrastructure impersonating a legitimate file-sharing service to harvest user credentials. The domain leverages Cloudflare Pages for rapid deployment and is currently under investigation for its role in credential harvesting campaigns. No specific drainer kit details are available at this time, but the domain is designed to mimic legitimate file-sharing platforms to deceive users into entering sensitive credentials. Technical analysis reveals the domain resolves to IP 172.66.44.54, registered through Cloudflare, Inc., and is protected by a Google Trust Services SSL certificate. As of the latest scan, VirusTotal shows 0/95 detections, indicating it remains undetected by most security vendors. The domain’s infrastructure relies on Cloudflare’s hosting and CDN services, which complicates takedown efforts. No creation date is provided in the available data, but the domain is actively serving phishing content. Google Safe Browsing (GSB) has not yet flagged this domain, and it currently remains unlisted on major blocklists. The domain is flagged as active and under investigation, with a current risk level classified as under_investigation. Immediate response actions include monitoring for associated IOCs (Indicators of Compromise) and coordinating with Cloudflare for takedown. While the domain remains undetected by most security tools, its reliance on legitimate infrastructure (Cloudflare and Google Trust Services) poses a challenge for mitigation. Users are advised to avoid interacting with this domain and report any suspicious activity to their security teams. The remaining risk is moderate due to the domain’s active status and the potential for credential harvesting, but further analysis is required to assess the full scope of the threat. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.44.54 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/d88c22c7-82fa-479e-a30c-85415b2b8987 - PhishDestroy: https://phishdestroy.io/domain/e--n-bridge-io.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/e--n-bridge-io.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/e--n-bridge-io.pages.dev/ Last updated: 2026-03-22