# howeyc.github.io — SUSPICIOUS > howeyc.github.io hosts a crypto drainer phishing site. This domain impersonates GitHub to steal crypto wallets. Verify safety on PhishDestroy immediately. ## Summary PhishDestroy has flagged howeyc.github.io for active crypto drainer phishing activity, currently under investigation. This domain poses a high risk to users due to its deceptive impersonation of GitHub, a trusted platform, aiming to facilitate unauthorized cryptocurrency transactions. This domain, registered via GitHub, Inc., resolves to IP address 185.199.108.153 and operates with an SSL certificate issued by Let's Encrypt. VirusTotal scans show no detections at this time (0/95), indicating it remains under the radar of most security vendors. The domain is not yet listed on major blocklists, and its trust scores reflect a lack of established reputation, further raising concerns about its legitimacy. The absence of detections does not equate to safety, as attackers frequently exploit newly registered domains to evade detection mechanisms. To mitigate risks associated with crypto drainer phishing, users should avoid interacting with suspicious links or websites claiming affiliation with GitHub or offering unverified services. Use PhishDestroy to verify domain safety before proceeding. Enable wallet transaction confirmations and multi-factor authentication where available. Report any encountered phishing attempts immediately to your security team or through trusted platforms like PhishDestroy to aid in blocking this threat. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/howeyc.github.io - PhishDestroy: https://phishdestroy.io/domain/howeyc.github.io/ - LLM endpoint: https://phishdestroy.io/domain/howeyc.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/howeyc.github.io/ Last updated: 2026-04-02