# googlezoom.pages.dev — SUSPICIOUS

> googlezoom.pages.dev impersonates Google to steal credentials. 0/95 VirusTotal detections. Verify sites with PhishDestroy.

## Summary
PhishDestroy identifies googlezoom.pages.dev as an active fake Google login portal designed to harvest user credentials under the guise of a video conferencing service. The domain leverages Cloudflare’s Pages.dev infrastructure and a Let’s Encrypt SSL certificate to mimic legitimacy, resolving to IP 172.66.44.135. While currently undetected by VirusTotal (0/95 engines), the site’s structure mirrors Google’s branding to deceive visitors into entering sensitive login information, posing a high risk of credential theft and further account compromise.

This domain was flagged for brand impersonation targeting Google, registered through Cloudflare, Inc., and equipped with a Let’s Encrypt SSL certificate. Resolving to IP 172.66.44.135, the site shows no current detections on VirusTotal as of the latest scan. The use of a Pages.dev subdomain and the absence of prior blocklist entries suggest a recently deployed campaign aimed at exploiting user trust in Google’s ecosystem. Technical analysis confirms the domain is actively resolving and operational, reinforcing the need for immediate scrutiny by security teams and end users.

If you visited googlezoom.pages.dev, assume your credentials may have been exposed. Immediately change passwords for any Google or linked accounts and enable two-factor authentication. Scan your device for malware using reputable antivirus tools and review account activity for unauthorized access. Report the domain to Google Safe Browsing and your organization’s security team to aid in blocking efforts. Avoid interacting with unsolicited links claiming to be Google services, and verify domains directly through official Google domains.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Google

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.135

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/6cca201d-cc3c-42f8-95e8-acb4c3d7a11f
- PhishDestroy: https://phishdestroy.io/domain/googlezoom.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/googlezoom.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/googlezoom.pages.dev/
Last updated: 2026-03-29