# ledgr-login-access.pages.dev — SUSPICIOUS > ledgr-login-access.pages.dev is a Google Cloudflare-hosted credential phishing page mimicking Ledger login. Check the full report. ## Summary PhishDestroy identifies ledgr-login-access.pages.dev as an active credential-phishing site designed to steal Ledger wallet credentials. The page impersonates a legitimate Ledger login portal, tricking visitors into entering their recovery phrases or seed phrases under the pretense of unlocking a device or account. Once submitted, attackers harvest the data to drain cryptocurrency wallets or sell the credentials on dark-web markets. This domain is part of a broader campaign targeting Ledger users with spoofed recovery pages hosted on Cloudflare Pages to evade traditional web-filtering tools. This domain was flagged after VirusTotal scans returned 0 detections out of 95 engines, indicating it has not yet been widely blacklisted. The site resolves to IP 172.66.44.123, a Cloudflare edge server, and uses a Google Trust Services SSL certificate to appear legitimate. Domain registration details show Cloudflare, Inc. as the registrar, leveraging the provider’s free Pages service to host deceptive login interfaces. These technical choices allow the phishing page to blend in with genuine cloud-hosted services while avoiding immediate detection. If you visited ledgr-login-access.pages.dev, assume your credentials or seed phrases were compromised. Immediately disconnect any connected wallets, revoke API keys, and transfer remaining funds to a newly generated wallet with a hardware device. Scan your device for malware using reputable antivirus software and enable two-factor authentication on all related accounts. Report the domain to your wallet provider and file a complaint with local cybercrime units or platforms like the FBI’s IC3 or Action Fraud. Avoid interacting with similar pages and verify URLs through official Ledger channels before entering sensitive information. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.44.123 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/ledgr-login-access.pages.dev - PhishDestroy: https://phishdestroy.io/domain/ledgr-login-access.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/ledgr-login-access.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/ledgr-login-access.pages.dev/ Last updated: 2026-04-04