# psxloot.io — SUSPICIOUS > PhishDestroy identifies psxloot.io as a live credential harvesting domain registered April 2026. This site hosts a fake PlayStation Network login page to steal. ## Summary PhishDestroy identifies psxloot.io as an active credential harvesting domain designed to mimic legitimate PlayStation Network (PSN) login pages, aiming to deceive users into surrendering their PSN account credentials. This fraudulent site was registered on April 02, 2026, through Global Domain Group LLC and resolves to IP address 209.112.89.200. The domain utilizes a Let's Encrypt SSL certificate, which may lend it an air of legitimacy despite its malicious intent. As of the latest analysis, psxloot.io remains undetected on VirusTotal, with 0 out of 95 detection engines flagging the domain, highlighting the importance of proactive security measures. Technical indicators strongly suggest malicious activity. The domain’s recent creation date—April 02, 2026—combined with its low detection rate on VirusTotal, indicates that psxloot.io is likely part of a newly deployed phishing campaign targeting PlayStation users. The registrar, Global Domain Group LLC, has been associated with numerous fraudulent domains in the past, further raising suspicion. While the SSL certificate from Let's Encrypt does not guarantee safety, its presence may be leveraged by attackers to evade browser-based warnings for unencrypted sites. The IP address 209.112.89.200 has been linked to multiple phishing and malware distribution campaigns, reinforcing the domain’s malicious classification. Given its active status and lack of detection, psxloot.io poses a significant risk to unsuspecting users. Users who have visited psxloot.io should immediately check their PlayStation Network accounts for unauthorized access or suspicious activity. If credentials were entered, change the password immediately and enable two-factor authentication (2FA) to secure the account. Additionally, users should scan their devices for malware using reputable security software, as credential-stealing phishing pages often deploy keyloggers or other malicious payloads. Report the domain to your security team or platform provider, such as Sony PlayStation Support or your antivirus vendor, to aid in blocking future access. Avoid interacting with this domain entirely, as it continues to operate undetected. Stay vigilant and verify the authenticity of login pages by checking for HTTPS, domain spelling, and official PlayStation domains before entering any credentials. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-04-02 14:29:48 - Registrar: Global Domain Group LLC - IP: 209.112.89.200 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/psxloot.io - PhishDestroy: https://phishdestroy.io/domain/psxloot.io/ - LLM endpoint: https://phishdestroy.io/domain/psxloot.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/psxloot.io/ Last updated: 2026-04-04