# xiaomi-cloud.support — MALICIOUS

> Stay protected from phishing threats. Learn why xiaomi-cloud.support poses risks and how to avoid potential scams targeting your data.

## Summary
PhishDestroy identifies xiaomi-cloud.support as a high-risk phishing domain designed to deceive users by mimicking legitimate Xiaomi services. The domain presents a generic phishing threat, aiming to harvest sensitive information from unsuspecting visitors. Despite having a page titled "Página em Branco," the site’s intent is malicious, contributing to the broader landscape of cyber fraud targeting mobile device users.

The domain resolves to the IP address 104.21.86.232 and is registered via Cloudflare, Inc., a popular content delivery and security service provider often abused by threat actors to mask their operations. It is currently active and listed on multiple security blocklists. VirusTotal analysis indicates that 19 out of 95 security vendors flag this domain as suspicious or malicious. Additionally, AlienVault OTX associates it with 14 separate threat pulses, underscoring its ongoing usage in phishing campaigns.

Given the domain’s active status and high-risk classification, users and organizations are strongly advised to block access to xiaomi-cloud.support. Employing updated endpoint protection, leveraging DNS filtering, and educating users on phishing recognition are critical steps to mitigate exposure. Continuous monitoring of this domain on threat intelligence platforms is recommended to stay ahead of evolving tactics used by attackers behind this fraudulent site.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: Página em Branco

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- Country: USA
- IP: 104.21.86.232
- Nameservers: lady.ns.cloudflare.com matias.ns.cloudflare.com

## Detection Status
- VirusTotal: 18 vendors flagged
  Vendors: ["ADMINUSLabs", "BitDefender", "CRDF", "Criminal IP", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Phishing Database", "SOCRadar", "Seclookup", "Sophos", "VIPRE", "Webroot", "alphaMountain.ai"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Live Page Content

### Page Text
Your request was blocked.

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ae9eb-eccc-7082-bc86-0e0cf49243d8.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/5cb582b6-bb09-4bf7-893b-2509b5b77178
- PhishDestroy: https://phishdestroy.io/domain/xiaomi-cloud.support/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/xiaomi-cloud.support/
Last updated: 2026-03-14