# ledgr-livean.pages.dev — SUSPICIOUS

> PhishDestroy identifies pages.dev impersonating Ledger with 0/95 VirusTotal detections. Check the full report for immediate safety guidance.

## Summary
Ledgr-livean.pages.dev is a confirmed Ledger brand impersonation site designed to trick users into revealing sensitive cryptocurrency wallet credentials. This phishing page mimics the official Ledger Live interface using a fraudulent Cloudflare Pages subdomain, aiming to capture seed phrases or login details under the guise of a digital asset management tool. The threat remains under investigation but is actively distributing malicious links targeting Ledger users worldwide.  PhishDestroy confirms this deception through several technical indicators. VirusTotal analysis shows the domain has 0 detections out of 95 security engines as of latest scan, indicating it evades most antivirus tools temporarily. The domain resolves to IP 188.114.97.3, hosted via Cloudflare Pages and secured with a Google Trust Services SSL certificate to appear legitimate at first glance. Such infrastructure choices suggest attackers prioritize short-term campaigns before widespread blacklisting occurs, making early detection critical for user protection.  Users who suspect interaction with this site should immediately disconnect devices from the internet and perform a factory reset on any device that accessed the page. Scan the device with updated antivirus software and revoke any exposed cryptocurrency wallet credentials through Ledger's official account recovery portal. Report the domain to Ledger's phishing reporting system and consider transferring remaining assets to newly created, secure wallets. Always verify third-party URLs against official Ledger domains ending in ledger.com before entering sensitive information.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Ledger

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/ledgr-livean.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/ledgr-livean.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ledgr-livean.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledgr-livean.pages.dev/
Last updated: 2026-04-10