# spotify-clone-blue.vercel.app — MALICIOUS > spotify-clone-blue.vercel.app is a verified Spotify phishing site flagged by 20 VirusTotal vendors. Check the full report. ## Summary PhishDestroy identifies spotify-clone-blue.vercel.app as a high-risk domain engineered to steal Spotify login credentials through a convincing clone interface. Cybersecurity researchers classify this as a credential-harvesting phishing site designed to trick users into entering their Spotify username and password, which are then captured by attackers. The page may appear as a legitimate Spotify login portal, complete with convincing branding and layout, but any credentials entered are sent directly to malicious servers controlled by threat actors. 216.198.79.131 is the IP address linked to this fraudulent service, facilitating the theft of sensitive data under false pretenses. This domain was flagged by PhishDestroy using automated threat intelligence pipelines. According to verified records, spotify-clone-blue.vercel.app is registered through Vercel Inc., a legitimate cloud platform provider often abused by threat actors for hosting malicious sites due to its rapid deployment capabilities. VirusTotal analysis confirms that 20 out of 95 participating security vendors have marked this domain as malicious, indicating widespread consensus on its threat status. Google Safe Browsing has also classified it under the SOCIAL_ENGINEERING category, confirming that the site employs deceptive tactics to manipulate users. The domain resolves to IP 216.198.79.131 and holds a valid SSL certificate issued by Google Trust Services, which may further enhance its appearance of legitimacy to unsuspecting visitors. If you visited spotify-clone-blue.vercel.app, assume your Spotify credentials may have been compromised. Immediately change your Spotify password using a trusted device or official app, and enable two-factor authentication (2FA) to secure your account. Scan your device for malware using reputable antivirus software, as some phishing pages also deliver malicious payloads. Report the incident to Spotify support and monitor your account for unauthorized activity. Avoid logging in through links in emails or messages—always use the official Spotify website (spotify.com) or verified mobile app to access your account. Staying vigilant and verifying URLs before entering login details are essential steps to prevent credential theft and protect personal information. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Vercel Inc. - IP: 216.198.79.131 ## Detection Status - VirusTotal: 20 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/a6e110eb-e906-4885-a6f0-02dceb730541 - PhishDestroy: https://phishdestroy.io/domain/spotify-clone-blue.vercel.app/ - LLM endpoint: https://phishdestroy.io/domain/spotify-clone-blue.vercel.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/spotify-clone-blue.vercel.app/ Last updated: 2026-04-15