# mailer05-tra.mdbgo.io — MALICIOUS > mailer05-tra.mdbgo.io is flagged as a high-risk phishing domain. Learn about its threats and how to stay safe from potential scams. ## Summary PhishDestroy identifies mailer05-tra.mdbgo.io as an active high-risk phishing domain targeting unsuspecting users. Phishing attacks like these are designed to steal sensitive information such as login credentials, financial data, or personal details by masquerading as legitimate services. The presence of this domain in phishing campaigns poses significant risks to individuals and organizations, potentially leading to data breaches or financial loss. This domain was registered on October 19, 2020, through OVH SAS and resolves to the IP address 93.105.88.216. It has been flagged by 20 out of 95 security vendors on VirusTotal and appears on two separate security blocklists, indicating a well-documented history of malicious activity. The infrastructure supporting this domain continues to facilitate phishing operations, making it a notable threat within the current cyber threat landscape. Users are strongly advised to avoid interacting with mailer05-tra.mdbgo.io or any unsolicited communications referencing it. Employing up-to-date antivirus software, enabling multi-factor authentication, and verifying the authenticity of emails or links before clicking are critical steps to mitigate risks. Organizations should also consider blocking this domain at the network level and educating employees about this active phishing threat to enhance overall cyber resilience. ## Threat Details - Verdict: MALICIOUS - Site status: alive (HTTP 200) - Page title: tradeKorea.com: Verified Korean Suppliers and Products ## Domain Intelligence - Registered: 2020-10-19 04:24:16 - Registrar: OVH SAS - IP: 93.105.88.216 - Nameservers: dns17.ovh.net ns17.ovh.net ## Detection Status - VirusTotal: 20 vendors flagged Vendors: ["ADMINUSLabs", "BitDefender", "Cluster25", "CyRadar", "DNS8", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "Netcraft", "OpenPhish", "Sophos", "Trustwave", "URLQuery", "VIPRE", "Webroot"] - Google Safe Browsing: clean - Blocklists: 1 hits Lists: ["PhishDestroy"] ## Live Page Content ### Page Text tradeKorea.com: Verified Korean Suppliers and Products Welcome to tradeKorea Please Sign in to use member services. Sign In Don't have an account? Join Free ### Form Fields - Password - aa - bb - Email Address - password - email - submit ## Evidence - Screenshot: https://urlscan.io/screenshots/019cc5a2-4cf6-75de-bbc8-4ca0ce36b332.png - Cloudflare Radar: https://radar.cloudflare.com/scan/1bdee7df-07a7-4d86-bfec-067191949d38 - PhishDestroy: https://phishdestroy.io/domain/mailer05-tra.mdbgo.io/ ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/mailer05-tra.mdbgo.io/ Last updated: 2026-03-14