# jubril879.github.io — MALICIOUS > PhishDestroy identifies jubril879.github.io as a credential theft site flagged by 15/95 VirusTotal vendors and Google Safe Browsing. Do not enter data. ## Summary PhishDestroy identifies jubril879.github.io as a credential theft domain designed to trick users into surrendering login details. This site masquerades as a legitimate service to harvest credentials, putting visitors at high risk of account compromise and identity theft. The domain resolves to IP 185.199.108.153 and operates under a valid Let's Encrypt SSL certificate, increasing its perceived legitimacy. Credential theft sites like this often appear in phishing campaigns targeting well-known brands or services, aiming to capture usernames, passwords, and other sensitive data. This domain was flagged by 15 out of 95 VirusTotal security vendors, including Google Safe Browsing, which classifies it under SOCIAL_ENGINEERING. It is hosted on GitHub Pages, a legitimate web hosting service, which adds a layer of deception since visitors may assume the site is trustworthy due to its association with GitHub. However, the presence of a credential theft payload indicates malicious intent. GitHub has not taken down the site at the time of this report, meaning it remains active and accessible to potential victims. If you visited jubril879.github.io, assume your credentials may have been compromised. Immediately change passwords for any accounts accessed from this site or entered into its forms. Enable multi-factor authentication where possible and scan your device for malware. If you reused passwords across multiple sites, update those accounts immediately. Report the domain to your browser’s security team or PhishDestroy to help prevent others from falling victim. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 15 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/d1f65f57-0cd4-474c-ae4a-517609cd8ed8 - PhishDestroy: https://phishdestroy.io/domain/jubril879.github.io/ - LLM endpoint: https://phishdestroy.io/domain/jubril879.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/jubril879.github.io/ Last updated: 2026-03-30