# trezor-usa-bridge.pages.dev — MALICIOUS

> trezor-usa-bridge.pages.dev impersonates Trezor to steal credentials. Stay alert and avoid this offline phishing domain. Learn more at PhishDestroy.

## Summary
PhishDestroy detects trezor-usa-bridge.pages.dev as a high-risk brand impersonation domain targeting Trezor users to capture sensitive information. Such phishing attempts jeopardize user security and trust.

The domain, created on February 21, 2026, was hosted on IP 172.66.44.236 and registered via Cloudflare, Inc. VirusTotal flagged it by 15 security vendors, and it appeared on a security blocklist. Currently, this phishing site is offline and inaccessible.

Users should remain vigilant against fake Trezor-related sites and never enter credentials on suspicious pages. Always verify official URLs and report suspected phishing to authorities or platforms like PhishDestroy.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Target brand: Trezor
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.44.236
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["armando.ns.cloudflare.com", "sarah.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["ADMINUSLabs", "Criminal IP", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Phishing Database", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019b8833-5adc-76fc-a5d3-2d6f5c5c182f.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/2cd89240-be8d-4d73-b23d-9c8e18ce5658
- PhishDestroy: https://phishdestroy.io/domain/trezor-usa-bridge.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/trezor-usa-bridge.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/trezor-usa-bridge.pages.dev/
Last updated: 2026-03-19