# home-connect-ledger-en-us.pages.dev — MALICIOUS

> Warning: home-connect-ledger-en-us.pages.dev is a high-risk phishing domain. Avoid interaction as it has been taken offline after detection.

## Summary
PhishDestroy identifies home-connect-ledger-en-us.pages.dev as a high-risk generic phishing threat. This domain was created recently and aimed to deceive users by mimicking legitimate services, posing significant risk of credential theft or fraud.

The domain was registered through Cloudflare, Inc. on February 21, 2026, which is common for shielding malicious activity. It appeared on one security blocklist and was flagged by 14 out of 95 VirusTotal security vendors, underscoring its malicious intent. The use of a Cloudflare-powered pages.dev domain allows threat actors to exploit trusted infrastructure for phishing campaigns.

To mitigate risk, users are strongly advised not to visit or interact with this domain. PhishDestroy confirms that the domain is currently offline, reducing immediate threat. However, vigilance is necessary as similar domains can emerge quickly. Security teams should monitor for related phishing URLs and educate users about recognizing suspicious links.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Target brand: Ledger
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.94
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["keyla.ns.cloudflare.com", "ignacio.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["BitDefender", "CyRadar", "Ermes", "ESET", "Emsisoft", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Netcraft", "Sophos", "Trustwave", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/0199320b-cfc9-77a8-b192-f97b7e42c78e.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/42016fa5-2420-4132-9941-17d50ee5e1ed
- PhishDestroy: https://phishdestroy.io/domain/home-connect-ledger-en-us.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/home-connect-ledger-en-us.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/home-connect-ledger-en-us.pages.dev/
Last updated: 2026-03-19