# hdfc-32-pan-update.web.app — MALICIOUS

> hdfc-32-pan-update.web.app is a credential phishing domain impersonating HDFC Bank to steal PAN card details. Flagged by 19/95 VirusTotal vendors.

## Summary
PhishDestroy identifies hdfc-32-pan-update.web.app as an active credential phishing domain targeting unsuspecting users by masquerading as a legitimate HDFC Bank service for PAN card updates. The threat is currently live and poses an elevated risk to individuals attempting to utilize this fraudulent page for sensitive document verification.  

This domain was flagged by 19 of 95 VirusTotal security vendors, indicating significant malicious activity. Registered through Google LLC, it resolves to IP address 199.36.158.100 and utilizes a Google Trust Services SSL certificate to enhance its deceptive authenticity. Additional red flags include the absence of a creation date in public records, suggesting recent registration, and a total blocklist count of 11 security platforms actively blocking access to this domain.  

Given the domain's active status and convincing impersonation of HDFC Bank, users are strongly advised to avoid interacting with hdfc-32-pan-update.web.app. Organizations should consider blocking the domain and associated IP address at the network perimeter. Immediately report any incidents to relevant cybersecurity teams and encourage stakeholders to verify URLs through official HDFC Bank channels before submitting sensitive information. Enhanced monitoring for similar domains leveraging HDFC brand impersonation is strongly recommended to prevent credential theft and financial fraud.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Page title: Pan Updation

## Domain Intelligence
- Registrar: Google LLC
- IP: 199.36.158.100

## Detection Status
- VirusTotal: 19 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/hdfc-32-pan-update.web.app
- PhishDestroy: https://phishdestroy.io/domain/hdfc-32-pan-update.web.app/
- LLM endpoint: https://phishdestroy.io/domain/hdfc-32-pan-update.web.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/hdfc-32-pan-update.web.app/
Last updated: 2026-04-02