# get-krakn-login.pages.dev — MALICIOUS

> Discover why get-krakn-login.pages.dev is flagged for credential phishing. Learn how to protect yourself from this high-risk threat.

## Summary
PhishDestroy identifies get-krakn-login.pages.dev as a high-risk credential phishing domain designed to steal user login information. Credential phishing can lead to unauthorized account access, financial loss, and identity theft, making this threat particularly dangerous for unsuspecting victims.

This domain was created recently on February 21, 2026, and is registered through Cloudflare, Inc. It appears on three separate security blocklists and is flagged by Google Safe Browsing for social engineering activities. VirusTotal analysis indicates 14 out of 95 security vendors detect malicious behavior associated with this domain. Thankfully, it is currently offline, reducing immediate risk to users.

Users should remain vigilant and avoid interacting with suspicious login pages like get-krakn-login.pages.dev. Always verify URLs carefully, use multi-factor authentication where possible, and report any suspicious activity to security teams or platforms like PhishDestroy. Keeping software updated and relying on trusted sources can also help prevent credential theft.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Target brand: Kraken
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.89
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["bart.ns.cloudflare.com", "collins.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019c7da9-3e5d-72b6-88db-89f3b2c31bde.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/0e9a7dd4-c885-4cb9-b6d0-d950fe52c384
- PhishDestroy: https://phishdestroy.io/domain/get-krakn-login.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/get-krakn-login.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/get-krakn-login.pages.dev/
Last updated: 2026-03-19