# jeffrin-samuel.github.io — MALICIOUS

> jeffrin-samuel.github.io engages in credential harvesting phishing. 18/95 scanners flag it. Check the full report for detailed safety info.

## Summary
The domain jeffrin-samuel.github.io is actively involved in a credential harvesting phishing scheme, posing significant risk to users by attempting to steal login credentials or sensitive personal information. This specific threat involves impersonation tactics designed to trick victims into submitting their usernames, passwords, or other secure details, which attackers can then misuse for fraudulent access or identity theft.

According to VirusTotal data, 18 out of 95 security vendors have flagged jeffrin-samuel.github.io for this malicious activity, underscoring its high-risk nature. The domain is registered through GitHub, Inc., a common platform leveraged by threat actors to host phishing content due to its trusted reputation. It resolves to IP address 185.199.108.153 and uses a free SSL certificate issued by Let's Encrypt, which may lend a false sense of security to potential victims. Additionally, this domain appears on 1 known security blocklist and is currently blocked by OpenPhish, confirming its classification within threat intelligence communities.

Users who have visited jeffrin-samuel.github.io should immediately avoid entering any credentials or personal data on the site. It is advisable to scan devices for malware and change any passwords that may have been submitted, especially if reused across other accounts. Enabling multi-factor authentication and monitoring financial and personal accounts for suspicious activity are recommended steps. Security professionals should update detection rules to include this domain and related infrastructure to prevent further exposure.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 18 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["OpenPhish"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/76e4992d-0fee-4f0d-8d90-b1c3824c40e4
- PhishDestroy: https://phishdestroy.io/domain/jeffrin-samuel.github.io/
- LLM endpoint: https://phishdestroy.io/domain/jeffrin-samuel.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/jeffrin-samuel.github.io/
Last updated: 2026-04-12