# secureproject-mainnet.pages.dev — SUSPICIOUS

> secureproject-mainnet.pages.dev is a credential theft phishing site flagged by 0/95 VirusTotal vendors.

## Summary
PhishDestroy identifies secureproject-mainnet.pages.dev as an active credential theft domain posing as a crypto wallet authentication portal. This fraudulent site leverages a Cloudflare Pages deployment to harvest user credentials under the guise of a 'secure project' authentication system. Current intelligence confirms the domain remains live and under active investigation by threat intelligence teams.


This domain was flagged by 0 of 95 VirusTotal vendors as of the latest scan, indicating undetected malicious activity. It resolves to IP 188.114.97.3, registered through Cloudflare, Inc., with a Google Trust Services SSL certificate for added legitimacy. The domain’s infrastructure shows minimal detection due to its cloaking behavior and reliance on trusted cloud services, reducing immediate red flags for end users.


Authorities recommend immediate action: do not enter credentials or interact with this domain. Update browser security settings to block the domain and associated IP. Users who suspect interaction should reset passwords with enhanced MFA and scan devices for malware. Threat hunters are urged to monitor for evolving infrastructure and report sightings to relevant cybersecurity platforms. Remain vigilant—credential theft sites often re-emerge under new domains with similar tactics.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/f9a44ef0-b5a3-46ec-b96e-7447b7dc4a49
- PhishDestroy: https://phishdestroy.io/domain/secureproject-mainnet.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/secureproject-mainnet.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/secureproject-mainnet.pages.dev/
Last updated: 2026-03-27