# enbridge.zapier.app — MALICIOUS

> PhishDestroy identifies enbridge.zapier.app as an active credential-stealing phishing site. 5/95 VirusTotal vendors flag it; review the full report now.

## Summary
PhishDestroy identifies enbridge.zapier.app as a live credential-stealing phishing site impersonating Enbridge to harvest Microsoft 365 logins. Visitors risk direct account takeover and data loss if credentials are entered. The domain is already flagged by 5 of 95 VirusTotal security vendors, raising its risk level to elevated.

This domain was flagged live on 2024-06-16 by PhishDestroy. It resolves to IP 64.239.123.193, uses a Let’s Encrypt SSL certificate, and was registered through NameBright.com. Its creation date is 2024-05-08, giving it roughly five weeks of active operation before detection.

If you visited enbridge.zapier.app, immediately change any passwords you may have entered and enable multi-factor authentication on all linked accounts. Review recent sign-in logs for unauthorized access and report suspicious activity to your IT or security team. Avoid reusing the same password across services to prevent credential-stuffing attacks.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 64.239.123.193

## Detection Status
- VirusTotal: 5 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/a4d6eec7-3eaf-434c-93f9-4d04df41783d
- PhishDestroy: https://phishdestroy.io/domain/enbridge.zapier.app/
- LLM endpoint: https://phishdestroy.io/domain/enbridge.zapier.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/enbridge.zapier.app/
Last updated: 2026-03-28