# ledger-live-us-dyp.pages.dev — SUSPICIOUS

> PhishDestroy flags ledger-live-us-dyp.pages.dev as active Ledger-brand impersonation phishing with 0/95 VirusTotal detections. Check the full report.

## Summary
PhishDestroy identifies ledger-live-us-dyp.pages.dev as an active Ledger-brand impersonation domain currently under investigation for phishing activity. This fraudulent page mimics Ledger’s official branding to deceive users into entering sensitive wallet credentials or financial information. The site leverages Cloudflare Pages to host its content and resolves to IP 188.114.97.3, which is associated with Google Trust Services’ SSL certificate—techniques commonly used by threat actors to appear legitimate and evade detection.


This domain is particularly concerning due to its low detection rate on VirusTotal, with only 0 out of 95 security vendors flagging it at the time of analysis. Registered through Cloudflare, Inc., the site was created to exploit Ledger users’ trust, and its infrastructure aligns with patterns observed in recent cryptocurrency phishing campaigns. The combination of Cloudflare’s hosting, Google Trust Services’ SSL, and a Ledger-branded name suggests a well-planned operation aimed at compromising user accounts.


If you’ve visited ledger-live-us-dyp.pages.dev, stop entering any personal or financial information immediately. Disconnect from the site, clear your browser cache, and run a full antivirus scan on your device. Enable multi-factor authentication on all cryptocurrency accounts and notify Ledger support if you’ve entered credentials. Avoid clicking links from unsolicited emails or ads, and verify any Ledger-related URLs by checking the official Ledger website. Report suspicious activity to PhishDestroy for further analysis.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Ledger

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/3219b801-8407-4976-9e69-11833166f286
- PhishDestroy: https://phishdestroy.io/domain/ledger-live-us-dyp.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ledger-live-us-dyp.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledger-live-us-dyp.pages.dev/
Last updated: 2026-03-22