# pmisba79-dev.github.io — MALICIOUS

> PhishDestroy identifies pmisba79-dev.github.io as a credential harvesting site. 14 out of 95 VirusTotal engines flag this GitHub-hosted domain—check the full.

## Summary
PhishDestroy has flagged pmisba79-dev.github.io as an active credential-harvesting site designed to trick visitors into entering their login details. The page impersonates a legitimate login portal, tricking users into surrendering usernames, passwords, or multi-factor authentication codes. Once stolen, these credentials are used to hijack accounts, drain funds, or launch further attacks against contacts in the victim’s address book, making every click risky. This type of attack is especially dangerous because victims often don’t realize the page is fake until after their accounts have been compromised. If you see this page in search results, ads, or unexpected emails, treat it as a red flag and avoid interacting with it entirely.  This domain was flagged by PhishDestroy on 2024-06-07 using multiple threat-intelligence feeds. The landing page resolves to IP address 185.199.110.153 and is served over a valid Let’s Encrypt SSL certificate to appear more trustworthy. VirusTotal analysis shows that 14 out of 95 participating security vendors have already marked it as malicious, confirming the high risk. The domain itself is hosted on GitHub Pages, a legitimate service often abused by attackers to bypass traditional web-filtering rules and host short-lived phishing pages. GitHub was notified on 2024-06-07 at 12:41 UTC; page takedown typically occurs within a few hours, but new variants can appear quickly under different subdomains.  If you already visited pmisba79-dev.github.io, immediately change any passwords or security questions you may have entered on the page. Enable multi-factor authentication on every account that still allows it, and scan your device for malware using a reputable antivirus tool. Report the page to your email provider and to PhishDestroy so other users can be warned. Never re-enter credentials on a site reached from unexpected links or ads. Forward the URL to your security team or paste it into PhishDestroy’s real-time checker to see the latest verdict before trusting it again.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.110.153

## Detection Status
- VirusTotal: 14 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/c297329e-f408-4ed7-a16c-fcd96d089968
- PhishDestroy: https://phishdestroy.io/domain/pmisba79-dev.github.io/
- LLM endpoint: https://phishdestroy.io/domain/pmisba79-dev.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/pmisba79-dev.github.io/
Last updated: 2026-03-23