# verizon.ehdyr.icu — MALICIOUS

> verizon.ehdyr.icu was a phishing site mimicking Verizon deals. Now offline, learn how it worked and what to do if you visited it.

## Summary
PhishDestroy identifies verizon.ehdyr.icu as a medium-risk phishing site that posed a danger by attempting to steal personal information under the guise of Verizon deals. Such sites can trick users into revealing sensitive data like passwords or payment details.

This phishing site impersonated Verizon's official offers to lure victims into submitting their credentials or financial info. It was flagged by several security vendors and appeared on a security blocklist before being taken offline.

If you visited verizon.ehdyr.icu, monitor your accounts for suspicious activity, change any passwords you may have entered, and consider running a security scan on your device. Stay cautious with unsolicited offers and verify URLs carefully.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: Verizon Deals: Save on Phones, Internet, Accessories | Verizon

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- IP: 172.67.165.39
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 7 vendors flagged
  Vendors: ["ADMINUSLabs", "Criminal IP", "CRDF", "Fortinet", "Gridinsoft", "SOCRadar", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019b90d4-3a41-77ea-a003-960b056b2755.png
- PhishDestroy: https://phishdestroy.io/domain/verizon.ehdyr.icu/
- LLM endpoint: https://phishdestroy.io/domain/verizon.ehdyr.icu/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/verizon.ehdyr.icu/
Last updated: 2026-03-19