# en-briidge.pages.dev — SUSPICIOUS

> en-briidge.pages.dev impersonates a PayPal bridge payment portal. This domain is a generic phishing scam hosted on Cloudflare Pages with 0/95 VirusTotal.

## Summary
PhishDestroy identifies a recently active phishing campaign targeting bridge payment users via the domain en-briidge.pages.dev. This domain is masquerading as a legitimate payment portal, likely attempting to harvest financial credentials under false pretenses. Security researchers assess this as a high-priority threat due to its active status and evasion of current detection systems.  This domain was flagged by PhishDestroy with 0 out of 95 VirusTotal engines detecting malicious activity as of the latest scan. The domain is registered through Cloudflare, Inc. and resolves to IP address 172.66.44.227. Notably, it uses a Google Trust Services SSL certificate to appear legitimate. The infrastructure suggests an attempt to exploit free hosting and trusted certificate authorities to bypass security measures.  If you have visited en-briidge.pages.dev, immediately cease any input of financial or personal information. Disconnect from the site and scan your device for malware. Report the domain to your financial institution and change passwords for any accounts exposed during the session. Users should also block the domain at the network level and monitor financial statements for unauthorized transactions. Exercise heightened caution with unsolicited payment links and verify domains before entering sensitive data.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.227

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/4caa5f8b-2ffc-4b6c-b84b-d3f1fb6eb4b5
- PhishDestroy: https://phishdestroy.io/domain/en-briidge.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/en-briidge.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/en-briidge.pages.dev/
Last updated: 2026-03-25