# opensea-login-help-cpp.pages.dev — MALICIOUS

> Stay alert: opensea-login-help-cpp.pages.dev is a high-risk phishing domain. Avoid entering credentials and verify official sources before logging in.

## Summary
PhishDestroy has identified opensea-login-help-cpp.pages.dev as a high-risk credential phishing domain targeting users by mimicking login assistance for a popular platform. This domain aims to deceive users into divulging sensitive login information, posing significant security risks.

The domain was registered through Cloudflare, Inc. on February 21, 2026. It resolved to the IP address 172.66.47.148 and has been flagged for social engineering by Google Safe Browsing. Additionally, 14 out of 95 security vendors on VirusTotal detected malicious activity, and it appeared on three separate security blocklists. The webpage title observed was "Suspected phishing site | Cloudflare," indicating hosting provider intervention.

Currently, the domain is offline and no longer accessible. Users are advised to avoid interacting with suspicious URLs resembling legitimate login portals. It is recommended to always access services through official channels and enable multi-factor authentication to reduce the risk of credential compromise.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.148
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["rodrigo.ns.cloudflare.com", "robin.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Google Safebrowsing", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019c7b66-c5c6-722f-a00c-af9915c43b14.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/b3863125-33b2-4ed9-96b4-6b01a7a6cbc9
- PhishDestroy: https://phishdestroy.io/domain/opensea-login-help-cpp.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/opensea-login-help-cpp.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/opensea-login-help-cpp.pages.dev/
Last updated: 2026-03-19