# phanexnsion.info — SUSPICIOUS > Learn about the active credential harvesting phishing domain phanexnsion.info. Security experts confirm 2/95 vendors flag this scam. Check the full report. ## Summary PhishDestroy identifies phanexnsion.info as an active credential harvesting phishing domain with an elevated risk level. This fraudulent site mimics legitimate service login pages to trick victims into disclosing sensitive credentials such as usernames and passwords. The domain has been linked to unauthorized data collection activities and poses a significant threat to users who may be deceived by its authentic appearance. This domain was flagged by 2 out of 95 security vendors on VirusTotal, indicating partial detection across leading threat intelligence platforms. Registered through PDR Ltd. d/b/a PublicDomainRegistry.com on March 12, 2026, the domain resolves to IP address 162.241.85.94, which has been associated with similar phishing operations in recent threat reports. To mitigate risk, users should avoid accessing phanexnsion.info entirely and immediately report any accidental exposure to their security teams. Organizations are advised to block the domain at the network level using DNS filtering tools and to update endpoint protection signatures with the latest IOCs. Security awareness training should emphasize scrutinizing unusual login prompts and verifying domain URLs, as this threat relies heavily on visual deception rather than technical sophistication. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-12 10:05:55 - Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com - IP: 162.241.85.94 ## Detection Status - VirusTotal: 2 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/3bf568bf-439b-4862-9a75-65abfd15259b - PhishDestroy: https://phishdestroy.io/domain/phanexnsion.info/ - LLM endpoint: https://phishdestroy.io/domain/phanexnsion.info/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/phanexnsion.info/ Last updated: 2026-03-22