# view-ledger-live-logn.pages.dev — SUSPICIOUS > Domain view-ledger-live-logn.pages.dev impersonates Ledger brand. VirusTotal detects 0/95. Verify domains before entering credentials. ## Summary PhishDestroy identifies the active phishing domain view-ledger-live-logn.pages.dev as a Ledger brand impersonation site designed for credential theft and potential cryptocurrency draining. This domain is currently under investigation but remains accessible and unblocked by security engines, presenting a significant threat to users seeking legitimate Ledger services. The site leverages cloud infrastructure and SSL certificates to appear trustworthy while exploiting user trust in the Ledger brand. Immediate action is required to prevent account compromise and financial loss. This domain was flagged by PhishDestroy's seed analysis (5b9dc1) and exhibits multiple red flags consistent with active phishing campaigns. VirusTotal currently shows 0 detections out of 95 security engines scanning the domain (0/95), indicating it remains undetected by major antivirus and threat intelligence platforms. The domain is registered through Cloudflare, Inc. and resolves to IP address 172.66.47.128, with a Google Trust Services SSL certificate providing false legitimacy. The Cloudflare Pages.dev subdomain hosting indicates potential abuse of legitimate cloud services for phishing operations. This brand impersonation threat specifically targets Ledger cryptocurrency wallet users by mimicking the official Ledger Live interface to steal login credentials and potentially drain digital assets. The absence of security detections (0/95) combined with the use of legitimate cloud infrastructure creates a dangerous combination of accessibility and perceived trustworthiness. Users accessing this domain risk immediate credential theft and cryptocurrency loss through crypto drainer scripts that may execute upon login. The threat is particularly insidious as it bypasses traditional email-based phishing filters by hosting on reputable cloud platforms. Immediate mitigation involves blocking this domain at the network level, verifying all Ledger-related domains through official channels only, and educating cryptocurrency users about the risks of brand impersonation campaigns. Users should never enter credentials on this domain and should report any interactions to Ledger's official support channels. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: Ledger ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.47.128 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/f91cdcff-6fcb-46b2-88cd-010d4f096bbf - PhishDestroy: https://phishdestroy.io/domain/view-ledger-live-logn.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/view-ledger-live-logn.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/view-ledger-live-logn.pages.dev/ Last updated: 2026-03-22