# shopee349.blogspot.com — MALICIOUS > shopee349.blogspot.com is an active credential theft site impersonating Shopee, flagged by 12 of 95 VirusTotal vendors. Avoid entering login info. ## Summary shopee349.blogspot.com currently poses an elevated risk due to its active credential theft campaign targeting Shopee users. The domain impersonates the Shopee brand to deceive victims into divulging sensitive login credentials, increasing the likelihood of account compromise and subsequent financial or identity theft. This domain has been flagged by 12 out of 95 security vendors on VirusTotal, indicating broad detection across multiple threat intelligence platforms. It resolves to the IP address 142.251.141.97 and is hosted on the Blogspot platform, which can be abused easily for malicious purposes. Although the registrar and creation date details are not provided here, the domain's presence on Blogspot suggests it benefits from the platform's legitimacy while exploiting brand trust. No additional blocklist or trust score data is available, but the elevated risk level and active status underline the ongoing threat it presents. To mitigate risks associated with this specific credential theft threat, users are strongly advised to avoid interacting with shopee349.blogspot.com or entering any personal or login information. Employ multi-factor authentication on all Shopee accounts to reduce the impact of compromised credentials. Security teams should monitor for any phishing attempts referencing this domain and block access at network boundaries. End users should be educated about the dangers of counterfeit login portals and instructed to verify URLs carefully before submitting credentials. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 142.251.141.97 ## Detection Status - VirusTotal: 12 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - PhishDestroy: https://phishdestroy.io/domain/shopee349.blogspot.com/ - LLM endpoint: https://phishdestroy.io/domain/shopee349.blogspot.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/shopee349.blogspot.com/ Last updated: 2026-03-26