# ledger--login-en.pages.dev — SUSPICIOUS > PhishDestroy identifies fake Ledger login page at ledger--login-en.pages.dev with 0/95 VirusTotal detections. Check the full report. ## Summary PhishDestroy identifies ledger--login-en.pages.dev as a fraudulent site posing as a Ledger cryptocurrency wallet login portal. This fake page is designed to steal users' credentials by mimicking the official Ledger authentication interface. When visitors enter their email and password, the credentials are harvested and sent to attacker-controlled servers instead of the legitimate Ledger platform. This domain exploits the trust in the Ledger brand to trick cryptocurrency users into surrendering sensitive financial access details. The site uses Visual similarity to Ledger's official branding and login flow, making it highly deceptive for users who rely on immediate recognition to avoid phishing attempts. Ledger--login-en.pages.dev was flagged by PhishDestroy on 2024-06-13. The domain is registered through Cloudflare, Inc. and uses a Google Trust Services SSL certificate to appear legitimate. Notably, VirusTotal currently shows 0 out of 95 security engines detecting this threat, indicating it evades most automated defenses. This low detection rate highlights the sophistication of the fraudsters, who are leveraging Cloudflare’s Pages.dev platform to host malicious content under a subdomain that mimics official Ledger login screens. Additionally, Google Safe Browsing has classified this domain with SOCIAL_ENGINEERING, confirming its intent to deceive users through impersonation. If you visited ledger--login-en.pages.dev, immediately change your Ledger account password and enable two-factor authentication. Do not re-enter any credentials on this site. Scan your device for malware using reputable antivirus software and review all connected cryptocurrency wallets for unauthorized transactions. Report the incident to Ledger support at security@ledger.com. Never use links in emails or search results to access your Ledger account—always type ledger.com directly into your browser. Stay informed by checking PhishDestroy’s brand protection alerts to avoid similar scams. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: Ledger ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.47.173 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/ledger--login-en.pages.dev - PhishDestroy: https://phishdestroy.io/domain/ledger--login-en.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/ledger--login-en.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/ledger--login-en.pages.dev/ Last updated: 2026-04-04