# hubledjer.pages.dev — SUSPICIOUS

> Hubledjer.pages.dev mimics cloud storage services to steal credentials. Hosted on Cloudflare with 0/95 VirusTotal detections, users should avoid entering data.

## Summary
PhishDestroy identifies hubledjer.pages.dev as an active phishing domain impersonating cloud storage services to harvest user credentials. The site leverages Cloudflare's Pages.dev platform to host malicious content, abusing legitimate infrastructure to evade detection. With an SSL certificate issued by Google Trust Services, the domain presents a false sense of security to potential victims. Current analysis shows 0 out of 95 VirusTotal engines flagging this domain, indicating a low initial detection rate but not mitigating the active threat posed to unsuspecting users.


This domain was flagged under seed 51c544 for generic phishing activity targeting cloud storage services. Intelligence confirms it is registered through Cloudflare, Inc. and resolves to IP address 188.114.97.3. The VirusTotal scan returned 0/95 detections, suggesting minimal detection coverage as of the latest analysis. Cloudflare's Pages.dev platform is being misused to host this malicious content, which is designed to trick users into entering sensitive login credentials or personal data under the guise of a legitimate cloud service. While the SSL certificate is issued by Google Trust Services, this does not validate the legitimacy of the domain’s content or intent.


Mitigation for this threat involves immediate domain blocking and user education to recognize deceptive cloud storage impersonations. Organizations and individuals should ensure their DNS filtering solutions include hubledjer.pages.dev and its associated IP (188.114.97.3) in blocklists to prevent access. Users should verify the authenticity of cloud storage links by directly navigating to official domains rather than clicking suspicious URLs. If credentials were entered, users must change passwords immediately and enable multi-factor authentication where possible. Reporting such domains to security teams or phishing alert services helps enhance collective defense against evolving tactics like this one.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/08c6edf1-6eea-4b5f-a6c6-3a502fe4820c
- PhishDestroy: https://phishdestroy.io/domain/hubledjer.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/hubledjer.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/hubledjer.pages.dev/
Last updated: 2026-03-22