# mannan2010.github.io — MALICIOUS > mannan2010.github.io is flagged for credential theft. VirusTotal reports 12/95 vendors malicious. Avoid this GitHub page. Report if seen! ## Summary PhishDestroy identifies mannan2010.github.io as an active credential theft site. This domain, hosted on GitHub, poses a significant risk to users through deceptive practices aimed at stealing sensitive information. The specific mechanisms employed by the site are designed to mimic legitimate login portals, potentially targeting a wide range of online services. Technical indicators for mannan2010.github.io reveal that it has a VirusTotal score of 12/95, indicating a notable consensus among security vendors regarding its malicious nature. The domain resolves to IP address 185.199.108.153. It is registered through GitHub, Inc. and uses an SSL certificate issued by Let's Encrypt. Furthermore, the domain appears on 1 security blocklist, specifically OISD. Currently, mannan2010.github.io remains active and presents an elevated risk to unsuspecting users. Immediate response actions should include avoiding interaction with the site, reporting it to relevant authorities, and verifying the legitimacy of any login requests encountered around the time of potential exposure. Users are advised to exercise extreme caution and implement robust security measures to mitigate the risk of credential compromise. The remaining risk is considered high due to the active status of the phishing domain and its potential to deceive users. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 12 vendors flagged - Google Safe Browsing: clean - Blocklists: 1 hits Lists: ["OISD"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/4267e82f-b861-4da9-9625-ea36238054a5 - PhishDestroy: https://phishdestroy.io/domain/mannan2010.github.io/ - LLM endpoint: https://phishdestroy.io/domain/mannan2010.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/mannan2010.github.io/ Last updated: 2026-03-30