# ledgerlive-desktop-web.pages.dev — SUSPICIOUS

> LedgerLive Desktop Web phishing domain ledgerlive-desktop-web.pages.dev mimics Ledger brand—flagged 0 of 95 VirusTotal vendors. Check the full report.

## Summary
PhishDestroy identifies an active phishing domain, ledgerlive-desktop-web.pages.dev, engaged in brand impersonation targeting Ledger users as part of a coordinated credential harvesting campaign.

This domain has not yet been flagged by any of the 95 VirusTotal security vendors, despite clear red flags associated with its fraudulent use. Registered via Cloudflare, Inc., the domain resolves to IP address 188.114.97.3 and leverages a Google Trust Services SSL certificate to appear legitimate. While registration details remain partially obscured, current telemetry indicates this site remains active and operational.

Current risk status for ledgerlive-desktop-web.pages.dev is under investigation, with no confirmed takedown or blacklisting at this time. Given its active status, users accessing Ledger services are strongly advised to verify official endpoints exclusively via ledger.com and to avoid any lookalike domains or external links. Organizations are recommended to block the domain at the network perimeter and monitor endpoint activity for signs of compromise using the provided IP and domain indicators. Immediate implementation of browser-based defenses and user awareness training is advised to mitigate exposure to this impersonation threat.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Ledger

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/f79fc1e4-faf4-4c4b-9c8a-143fb6887872
- PhishDestroy: https://phishdestroy.io/domain/ledgerlive-desktop-web.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ledgerlive-desktop-web.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledgerlive-desktop-web.pages.dev/
Last updated: 2026-03-24