# sso-upholes-log.framer.media — MALICIOUS

> The domain sso-upholes-log.framer.media is linked to phishing risks. Avoid interaction and verify sources to protect your personal data.

## Summary
PhishDestroy identifies sso-upholes-log.framer.media as an active phishing domain posing a medium-level risk. This type of threat is designed to deceive users by mimicking legitimate services, aiming to steal sensitive information such as login credentials. Given the prevalence of social engineering attacks, users should remain vigilant to avoid falling victim to these scams.

The domain currently resolves to an IP address located at 31.43.160.6 and has been flagged by Google Safe Browsing for social engineering activities. Additionally, VirusTotal analysis reveals that 8 out of 95 security providers detect malicious behavior associated with this domain. These indicators highlight its abuse for phishing campaigns and reinforce the necessity for caution.

Users encountering sso-upholes-log.framer.media should refrain from clicking on links or providing any personal information. It is advisable to verify the authenticity of any communication referencing this domain through official channels. Employing updated security measures such as browser protections and endpoint security solutions can further reduce the risk of compromise. PhishDestroy recommends reporting suspicious activity to help enhance collective defense.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 404)
- Page title: Uphold Login | Secure Access to Your Uphold Account

## Domain Intelligence
- Registered: 2026-03-10 13:07:01
- IP: 31.43.160.6
- IP Country: NL
- IP City: Amsterdam
- IP Org: AS16509 Amazon.com, Inc.
- Nameservers: NS_NOT_FOUND
- SSL Issuer: Let's Encrypt / E7

## Detection Status
- VirusTotal: 8 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "CRDF", "CyRadar", "Emsisoft", "Fortinet", "Netcraft", "Trustwave"]
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cd7a3-2391-713d-97ff-8db945ba8970.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/58fa9bf8-7b42-4e07-a630-2ea417ff4596
- PhishDestroy: https://phishdestroy.io/domain/sso-upholes-log.framer.media/
- LLM endpoint: https://phishdestroy.io/domain/sso-upholes-log.framer.media/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/sso-upholes-log.framer.media/
Last updated: 2026-03-19