# secure-kraken-com-cdn.pages.dev — MALICIOUS

> PhishDestroy identifies secure-kraken-com-cdn.pages.dev as a crypto drainer impersonating Kraken. Blocked by MetaMask, flagged by 15/95 VirusTotal vendors.

## Summary
PhishDestroy identifies secure-kraken-com-cdn.pages.dev as a malicious domain engaged in brand impersonation targeting Kraken users. This domain is specifically crafted to mimic Kraken’s official infrastructure, likely serving as a gateway for a crypto drainer campaign aimed at stealing digital assets. The threat actor leverages Kraken’s trusted brand reputation to deceive users into entering credentials or connecting cryptocurrency wallets, enabling unauthorized fund transfers. MetaMask has already flagged and blocked access to this domain, indicating its malicious nature and potential risk to users attempting to interact with it.  This domain resolves to the IP address 172.66.44.61 and was registered through Cloudflare, Inc. Security vendor analysis conducted via VirusTotal reveals that 15 out of 95 security engines have flagged this domain as malicious, underscoring its elevated risk profile. Additionally, this domain has been identified on one security blocklist, further validating its suspicious reputation. The SSL certificate is issued by Google Trust Services, which may lend an air of legitimacy to unsuspecting users, though this does not mitigate the underlying malicious intent.  Users who have visited secure-kraken-com-cdn.pages.dev should immediately cease all interactions with the domain and disconnect any connected cryptocurrency wallets. It is critical to revoke any permissions granted to this domain through wallet interfaces and conduct a thorough review of recent transactions for signs of unauthorized activity. If any credentials were entered, users should change their passwords immediately and enable two-factor authentication where applicable. PhishDestroy strongly advises verifying the authenticity of domains by cross-referencing official sources and using reputable security tools before engaging with any online services, especially those related to cryptocurrency transactions.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Kraken

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.61

## Detection Status
- VirusTotal: 15 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["MetaMask"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/d001dc95-99a3-4714-a485-8078180f9556
- PhishDestroy: https://phishdestroy.io/domain/secure-kraken-com-cdn.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/secure-kraken-com-cdn.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/secure-kraken-com-cdn.pages.dev/
Last updated: 2026-03-22