# tharunkumar53007.github.io — SUSPICIOUS > tharunkumar53007.github.io mimics a legitimate login portal to steal credentials — Google Safe Browsing confirms SOCIAL_ENGINEERING. Check the full report. ## Summary PhishDestroy identifies tharunkumar53007.github.io as an active phishing page designed to harvest user login credentials under the guise of a fake portal. The site lures victims with spoofed branding or a fabricated login prompt, then exfiltrates entered usernames and passwords to attacker-controlled servers. Once credentials are captured, attackers can access real accounts, steal sensitive data, or launch further fraud. This domain was registered through GitHub, Inc. and first observed on blocklists with 0 detections on VirusTotal, indicating it is still under the radar of many security tools. This domain was flagged by Google Safe Browsing under the SOCIAL_ENGINEERING category and blocked by two major threat intelligence feeds—OpenPhish and OISD. It resolves to IP 185.199.108.153 and uses a Let’s Encrypt SSL certificate to appear legitimate. Despite its active status and presence on two security blocklists, it has not yet been widely detected, with 0 out of 95 VirusTotal scanners flagging it at the time of analysis. This low detection rate makes it particularly dangerous to unsuspecting users who may trust the GitHub.io domain suffix. If you visited tharunkumar53007.github.io and entered any login details, immediately change your password on the real service and enable two-factor authentication. Scan your device for malware using reputable antivirus software, especially if you reused the same password elsewhere. Report the site to your browser or security provider and avoid interacting with it further. Always verify URLs carefully and use password managers that warn against fake login pages — they often detect subtle domain mismatches that humans miss. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 2 hits Lists: ["OpenPhish", "OISD"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/tharunkumar53007.github.io - PhishDestroy: https://phishdestroy.io/domain/tharunkumar53007.github.io/ - LLM endpoint: https://phishdestroy.io/domain/tharunkumar53007.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/tharunkumar53007.github.io/ Last updated: 2026-04-04