# pumpy.cfd — SUSPICIOUS

> pumpy.cfd is a fake giveaway scam hosting phishing pages. 1 security vendor flags this domain. Check the full report.

## Summary
PhishDestroy identifies pumpy.cfd as an active generic phishing domain impersonating a social media brand giveaway to harvest credentials and payment details. This domain (created March 20, 2026) resolves to 172.67.143.29 and was registered through Global Domain Group LLC using a Let’s Encrypt SSL certificate to appear legitimate. Only 1 out of 95 VirusTotal security vendors currently flags the domain, leaving most defenses blind to its malicious intent.

Technical indicators reveal a high-risk profile: the domain’s recent creation date (March 20, 2026) suggests opportunistic registration, while the low detection rate (1/95) indicates evasion tactics such as fast flux or bulletproof hosting. The presence of a valid SSL certificate (Let’s Encrypt) further lowers user suspicion, making it easier to trick victims into entering sensitive information on spoofed login or payment forms. Global Domain Group LLC’s involvement raises concerns about bulk registrations for malicious purposes.

Users who visited pumpy.cfd should immediately check their account credentials for unauthorized access, enable two-factor authentication where available, and scan devices for malware. Avoid entering any personal or financial information on this domain. Report the domain to your security team or block it at the network perimeter using the IP and domain indicators. Monitor financial accounts closely for suspicious transactions and consider resetting passwords on other services if the same credentials were reused.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-20 12:42:10
- Registrar: Global Domain Group LLC
- IP: 172.67.143.29

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/005e51fb-01c2-4e98-a613-0c265de5f8cf
- PhishDestroy: https://phishdestroy.io/domain/pumpy.cfd/
- LLM endpoint: https://phishdestroy.io/domain/pumpy.cfd/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/pumpy.cfd/
Last updated: 2026-03-22