# polymarket-us.pages.dev — MALICIOUS

> polymarket-us.pages.dev was flagged for high-risk phishing and social engineering. Stay alert and avoid this domain. Check PhishDestroy for updates.

## Summary
PhishDestroy identifies polymarket-us.pages.dev as a high-risk phishing domain designed to deceive users through social engineering tactics. The domain's primary threat type is generic phishing, posing significant danger to unsuspecting individuals.

Supporting intelligence includes detection by 14 out of 95 VirusTotal security vendors and classification as a social engineering threat by Google Safe Browsing. The domain, registered via Cloudflare, Inc. on February 21, 2026, appears on two security blocklists and resolves to IP address 172.66.44.59. The page was identified with the title "Suspected phishing site | Cloudflare," indicating its malicious intent.

Currently, polymarket-us.pages.dev has been taken offline, mitigating further risk. Users are advised to avoid interaction with this domain and remain cautious of similar suspicious URLs. PhishDestroy continues to monitor the situation and recommends implementing standard anti-phishing controls to prevent exposure to such threats.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.44.59
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["chan.ns.cloudflare.com", "fonzie.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "Chong Lua Dao", "CyRadar", "Fortinet", "G-Data", "Google Safebrowsing", "Lionic", "Phishing Database", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019bb37f-45b8-75a9-8dee-874bbf9dbce5.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/437ac5c3-6b71-43e5-87d5-4b3d1d2377f1
- PhishDestroy: https://phishdestroy.io/domain/polymarket-us.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/polymarket-us.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/polymarket-us.pages.dev/
Last updated: 2026-03-19