# loedger-liv.pages.dev — SUSPICIOUS

> Loedger-liv.pages.dev is an active brand impersonation targeting Ledger users. Two of 95 VirusTotal vendors flagged it. Avoid this phishing domain!

## Summary
PhishDestroy has identified loedger-liv.pages.dev as an active brand impersonation campaign targeting Ledger users. This domain poses an elevated risk due to its attempt to deceive individuals into believing it is a legitimate Ledger service.

Technical analysis reveals that loedger-liv.pages.dev is registered through Cloudflare, Inc. and resolves to the IP address 188.114.97.3. The domain is secured with an SSL certificate issued by Google Trust Services. VirusTotal reports that 2 out of 95 security vendors have flagged this domain as malicious.

Currently, loedger-liv.pages.dev remains active. Users are strongly advised to avoid interacting with this domain or any communications originating from it. Always verify the authenticity of websites and communications before entering sensitive information. Report any suspected phishing attempts to Ledger and relevant security authorities to help mitigate the threat.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Ledger

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/6d130a88-ba81-4120-b56e-8503aa923131
- PhishDestroy: https://phishdestroy.io/domain/loedger-liv.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/loedger-liv.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/loedger-liv.pages.dev/
Last updated: 2026-03-25