safeonline bad website detect is weak

it cannot detect the facebook phish website, but show "verified" which give misleading it is safe.

http://ultraxs.com/image-8C90_4AF1606A.jpg

 

there is nothing wrong with facebook, why should it be flagged.

 

check the URL box, thers an addition RIGHT after facebook.com

hehe i guess ur statement proves why sooo many people fall for it

 

just test that firefox's own anti-phish protect from it

 

I see and you are correct. I was just talking about facebook.com. It looks bad on SafeOnlines part.

 

Could you please PM me the link? The image doesn't appear to exist anymore.

 

the link is deleted, the image still there.


new phishing link: http://www.facebook.com.oooliok.me.uk/globaldirectory/LoginFacebook.php

 

Prevx shows "IP not verified" what does it mean? is it unknown to prevx DB or unsafe?

http://i.imagehost.org/0893/Clipboard01.png

http://a.imagehost.org/0484/Clipboard02.png

 

It just means that the website hasn't been cross referenced yet. Less popular websites will tend to not be verified already so it may take longer for the verification to take place, however, if the website does become identified as malicious, it will be immediately blocked.

 

Huh!
I'd like to see the explanation From Prevx.

 

Öhm, ako, there is an explanation from Joe. Right above you post.

 

No, it is not an answer to the post #1.

 

Please don't expect everything from prevx. I just tried the link you have written above, first firefox stops me to reach it, then kaspersky link filter stops me, then comodo's secure DNS stops me to reach it and at the end there is nothing to do with prevx. Prevx is a layer in my multilayer protection. I mainly want prevx to protect my bank accounts from attacks while i browsing them, i am not obsessive about anti phishing feature of prevx. Because as Joe said "Less popular websites will tend to not be verified already so it may take longer for the verification to take place". that doesn't means every phising site would be immediately blocked, it is all about popularity imo

 

The problem is: SafeOnline claims the IP is verified. Of course, the point is here, that the URL and IP match, but in this case the "verification" only mislead the potential victim. One does not need to have genius heuristics to find out that the URL is a potential phishing site.

 

The IP verification is explained in the help file and everywhere else - it is still valid to know that the phish isn't being phished

Phishing is harder to stop than malware - the life cycle of the average phish is around 5 hours and after they've been reported, they will generally never be used again for actually attacking a victim. We do have some phishing feeds coming in but they are almost completely irrelevant based on the volume we see and very heavily prone to FPs - therefore, we've implemented generic rules to "see" the phishes. Facebook, for instance, isn't currently covered by these rules (we are focusing primarily on banking phishes) but it can be. However, this still doesn't solve the core problem, which is solved by our credential protection.

Configuring your username/password within SafeOnline to be locked down to a specific domain will prevent any accidental phishing from taking your account information. We will immediately warn you if you are trying to enter your credentials outside of the accepted website, which prevents any phishing from taking place.

Let me know if you have any questions with this

 

how should i configure them?Is there any configuration?

 

Öhm, that still does not work for me...

 

Have you tried with the newest v3.0.5.23 release? We've fixed a handful of issues with credential protection which were most likely preventing yours from working properly.

 

If you visit: http://info.prevx.com/safehelp.asp and click Advanced Configuration (the last option) > Advanced Configuration Options, we've explained the advanced options + credential protection in there

Let me know if you have any questions!

 

This was a good one!

 

When it comes to bad URL's just use

MyWot.com it's the worlds best site advisor. (not including internet filters)

 

No, i didn't try it. I will do so if i find the time.

 

How can i miss this helpfull documentation! thank you