# login-ledgerlive-sso.pages.dev — SUSPICIOUS > Security alert: login-ledgerlive-sso.pages.dev is a Ledger brand impersonation phishing site with 0/95 VirusTotal detections. Check the full report. ## Summary PhishDestroy identifies login-ledgerlive-sso.pages.dev as an active brand impersonation phishing domain targeting Ledger cryptocurrency wallet users by mimicking official login pages. This malicious domain employs deceptive tactics to trick visitors into entering sensitive credentials, putting crypto assets at risk. The impersonation leverages visual and textual cues to appear legitimate, exploiting trust in Ledger’s brand reputation. This threat was flagged with 0 VirusTotal detections out of 95 scans, indicating a currently undetected payload. Registered through Cloudflare, Inc., the domain was created via Google’s Pages service and resolves to IP address 172.66.46.221 under a Google Trust Services SSL certificate, adding superficial credibility. PhishDestroy’s seed analysis (725f21) confirms this as a fresh, actively monitored threat vector within the Ledger ecosystem. If you visited login-ledgerlive-soo.pages.dev, immediately inspect your browser history and Ledger account for unauthorized access. Do not enter any cryptocurrency wallet recovery phrases or sensitive data on this or similar domains. Report the incident to Ledger’s official support and run a malware scan. Disable any saved browser passwords for this domain and enable two-factor authentication on all crypto accounts. Stay vigilant against brand impersonation tactics targeting financial services. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: Ledger ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.46.221 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/login-ledgerlive-sso.pages.dev - PhishDestroy: https://phishdestroy.io/domain/login-ledgerlive-sso.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/login-ledgerlive-sso.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/login-ledgerlive-sso.pages.dev/ Last updated: 2026-04-03