# get-ledgar-io-en-us.pages.dev — SUSPICIOUS

> PhishDestroy identifies get-ledgar-io-en-us.pages.dev as a phishing site impersonating Ledger.io. VirusTotal flags 2/95 vendors after Cloudflare routing via 172.

## Summary
PhishDestroy identifies this site as a live phishing scam designed to steal cryptocurrency wallet credentials by impersonating Ledger.io’s official page. The fake page (get-ledgar-io-en-us.pages.dev) is hosted on Cloudflare’s network at IP 172.66.44.201 and leverages a Google Trust Services SSL certificate to appear legitimate. Visitors are prompted to “verify” their recovery phrase or seed phrase, a classic red flag for crypto-targeting phishing.  This domain was flagged by PhishDestroy after VirusTotal confirmed only 2 out of 95 security vendors currently detect it, classifying it as an elevated-risk threat. The domain is registered through Cloudflare and resolves to a known suspicious IP. While SSL certificates are often used to build trust, in this case it’s weaponized to deceive users into believing the site is safe.  If you visited get-ledgar-io-en-us.pages.dev, stop entering any information immediately. Do not re-enter your seed phrase, recovery phrase, or private keys anywhere. Disconnect from the internet, clear your browser cache and cookies, and run a full antivirus scan. Report the domain to your browser’s Safe Browsing program and warn others. Always verify wallet-related URLs directly from the official Ledger website using a trusted bookmark.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.201

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/1d9fb50f-fd07-4ba4-84f0-c58b26803093
- PhishDestroy: https://phishdestroy.io/domain/get-ledgar-io-en-us.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/get-ledgar-io-en-us.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/get-ledgar-io-en-us.pages.dev/
Last updated: 2026-03-22