# migration-dpai.pages.dev — SUSPICIOUS > migration-dpai.pages.dev engages in credential theft with 1 out of 95 VT vendors flagging it. Blocked by MetaMask and ScamSniffer. Avoid interaction. ## Summary The domain migration-dpai.pages.dev is identified as an active credential theft threat, targeting users to steal login information. There is no specific brand impersonation or drainer kit linked, but its purpose revolves around generic phishing tactics focusing on credential compromise. Technical indicators reveal the domain has a VirusTotal detection rate of 1 out of 95 security vendors. It was registered through Cloudflare, Inc., and resolves to IP address 172.66.47.65. The domain carries an SSL certificate issued by Google Trust Services and is currently listed on 3 security blocklists. It is also blocked by well-known platforms such as MetaMask, SEAL, and ScamSniffer. No exact creation date was provided, and Google Safe Browsing status was not mentioned specifically. Currently, migration-dpai.pages.dev maintains an elevated risk level and remains active. Due to its presence on multiple blocklists and recognition by several security tools, users should avoid interaction and refrain from entering any credentials. Organizations should continue monitoring for related phishing attempts and ensure endpoints have updated threat intelligence to block access. Until the domain is taken down or remediated, it presents a tangible risk of credential theft to end users. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.47.65 ## Detection Status - VirusTotal: 1 vendors flagged - Google Safe Browsing: clean - Blocklists: 3 hits Lists: ["MetaMask", "SEAL", "ScamSniffer"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/2bba7239-2e58-4784-a2f6-63f85c3f4faf - PhishDestroy: https://phishdestroy.io/domain/migration-dpai.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/migration-dpai.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/migration-dpai.pages.dev/ Last updated: 2026-03-28