# m-n-blond.vercel.app — MALICIOUS

> m-n-blond.vercel.app is flagged as a high-risk phishing site. Avoid interactions and report suspicious activity linked to this domain.

## Summary
PhishDestroy identifies m-n-blond.vercel.app as an active generic phishing domain posing significant risk to users. The domain presents a phishing page titled "Bell Business Site," which suggests an attempt to impersonate a legitimate business service. Its classification falls under generic phishing, indicating the primary goal is credential theft or fraud.

Technically, the domain was registered recently on March 12, 2026, which is a common trait among phishing infrastructure aiming to avoid long-term detection. It resolves to IP address 216.198.79.67, and analysis from VirusTotal shows that 17 out of 95 security vendors have flagged the domain for suspicious activity. Additionally, the domain appears on one security blocklist, reinforcing its malicious status. The use of a vercel.app subdomain indicates hosting on a popular cloud platform, which attackers may exploit for rapid deployment and evasion.

Currently, m-n-blond.vercel.app remains active and poses a high threat level. PhishDestroy recommends immediate caution for any users encountering this domain and suggests reporting it to security teams or internet service providers. Blocking access to this domain and monitoring for potential phishing attempts impersonating "Bell Business Site" reduces the risk of credential compromise and related fraud.

## Threat Details
- Verdict: MALICIOUS
- Site status:  (HTTP ?)
- Page title: Bell Business Site

## Domain Intelligence
- Registered: 2026-03-12 13:07:01
- IP: 216.198.79.67
- IP Country: US
- IP City: Walnut
- IP Org: AS16509 Amazon.com, Inc.
- SSL Issuer: Google Trust Services / WR1

## Detection Status
- VirusTotal: 17 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Netcraft", "OpenPhish", "PhishLabs", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce592-1ea3-74ac-855d-343b99ba608e.png
- PhishDestroy: https://phishdestroy.io/domain/m-n-blond.vercel.app/
- LLM endpoint: https://phishdestroy.io/domain/m-n-blond.vercel.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/m-n-blond.vercel.app/
Last updated: 2026-03-19