# secure-apps-io-krraken.pages.dev — MALICIOUS

> Discover if secure-apps-io-krraken.pages.dev is safe. Learn about its credential phishing risk and current offline status.

## Summary
PhishDestroy identifies secure-apps-io-krraken.pages.dev as a high-risk credential phishing domain designed to steal user login information. The domain was primarily used to impersonate legitimate services, tricking victims into submitting sensitive credentials. Due to its nature, it posed a significant threat to users who encountered it via malicious links or deceptive messaging.

The domain was registered on February 21, 2026, through Cloudflare, Inc., and hosted on their infrastructure. Multiple security blocklists flagged this domain, and Google Safe Browsing specifically classified it under social engineering threats. VirusTotal analysis detected malicious indicators, with 15 security vendors marking it as suspicious or harmful. The domain was hosted on pages.dev, which is commonly used for static site hosting, often abused by attackers for phishing.

Currently, secure-apps-io-krraken.pages.dev is offline and no longer accessible, mitigating immediate risk. However, users should remain vigilant as attackers frequently register similar domains with slight variations. It is recommended to avoid clicking on unsolicited links, verify URLs before entering credentials, and keep security software updated. Organizations should continue monitoring for related domains and educate users on recognizing phishing attempts.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.44.175
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["noel.ns.cloudflare.com", "aron.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ca095-dfe0-758c-a22d-2f7516236da3.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/37b7b7b1-596e-4b3f-877a-61a8b8e15261
- PhishDestroy: https://phishdestroy.io/domain/secure-apps-io-krraken.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/secure-apps-io-krraken.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/secure-apps-io-krraken.pages.dev/
Last updated: 2026-03-19