# help-centre.support-2fa.com — SUSPICIOUS > help-centre.support-2fa.com impersonates a legitimate 2FA support site to steal credentials. Flagged by 0 of 95 VirusTotal vendors. ## Summary PhishDestroy identifies help-centre.support-2fa.com as an active two-factor authentication (2FA) phishing site under investigation. This domain poses a high-risk threat by masquerading as a legitimate support portal for multi-factor authentication services, aiming to deceive users into divulging login credentials or sensitive account details. The site exploits trust in 2FA branding to facilitate credential harvesting and potential unauthorized access to user accounts. This domain was flagged by 0 of 95 VirusTotal vendors, indicating no current detections despite its malicious intent. Registered through Cloudflare, Inc., the domain resolves to IP address 188.114.96.3 and was created on March 18, 2026. The domain currently lacks a significant blocklist presence, with trust scores remaining unassessed due to its recent emergence. The site remains active and dangerous. Users are strongly advised to avoid interacting with help-centre.support-2fa.com or entering any credentials. If accidentally exposed, immediately change passwords for affected accounts, enable multi-factor authentication where possible, and report the domain to relevant cybersecurity authorities. Monitor financial and account activity for signs of compromise. Organizations should block this domain at the network level to prevent employee exposure. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-18 20:25:56 - Registrar: Cloudflare, Inc. - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/39300878-7a4e-44c2-bf66-19ad1dc7a47b - PhishDestroy: https://phishdestroy.io/domain/help-centre.support-2fa.com/ - LLM endpoint: https://phishdestroy.io/domain/help-centre.support-2fa.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/help-centre.support-2fa.com/ Last updated: 2026-03-21