safeonline bad website detect is weak

Discussion in 'Prevx Releases' started by apm, Nov 4, 2009.

Thread Status:
Not open for further replies.
  1. apm

    apm Registered Member

    Joined:
    Mar 15, 2006
    Posts:
    162
  2. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    there is nothing wrong with facebook, why should it be flagged.
     
  3. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    check the URL box, thers an addition RIGHT after facebook.com

    hehe i guess ur statement proves why sooo many people fall for it :D
     
    Last edited: Nov 4, 2009
  4. apm

    apm Registered Member

    Joined:
    Mar 15, 2006
    Posts:
    162
    just test that firefox's own anti-phish protect from it
     
  5. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    I see and you are correct. I was just talking about facebook.com. It looks bad on SafeOnlines part.
     
  6. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    Could you please PM me the link? The image doesn't appear to exist anymore.
     
  7. apm

    apm Registered Member

    Joined:
    Mar 15, 2006
    Posts:
    162
    Last edited: Nov 4, 2009
  8. apm

    apm Registered Member

    Joined:
    Mar 15, 2006
    Posts:
    162
  9. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    It just means that the website hasn't been cross referenced yet. Less popular websites will tend to not be verified already so it may take longer for the verification to take place, however, if the website does become identified as malicious, it will be immediately blocked.
     
  10. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    Huh! :thumbd:
    I'd like to see the explanation From Prevx.
     
    Last edited: Nov 17, 2009
  11. Habakuck

    Habakuck Registered Member

    Joined:
    May 24, 2009
    Posts:
    544
    Öhm, ako, there is an explanation from Joe. :doubt: Right above you post. :rolleyes:
     
  12. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    No, it is not an answer to the post #1.
     
  13. papillonn

    papillonn Registered Member

    Joined:
    Oct 19, 2005
    Posts:
    117
    Location:
    TR
    Please don't expect everything from prevx. I just tried the link you have written above, first firefox stops me to reach it, then kaspersky link filter stops me, then comodo's secure DNS stops me to reach it and at the end there is nothing to do with prevx. Prevx is a layer in my multilayer protection. I mainly want prevx to protect my bank accounts from attacks while i browsing them, i am not obsessive about anti phishing feature of prevx. Because as Joe said "Less popular websites will tend to not be verified already so it may take longer for the verification to take place". that doesn't means every phising site would be immediately blocked, it is all about popularity imo
     
  14. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    The problem is: SafeOnline claims the IP is verified. Of course, the point is here, that the URL and IP match, but in this case the "verification" only mislead the potential victim. One does not need to have genius heuristics to find out that the URL is a potential phishing site.
     
    Last edited: Nov 17, 2009
  15. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    The IP verification is explained in the help file and everywhere else - it is still valid to know that the phish isn't being phished :)

    Phishing is harder to stop than malware - the life cycle of the average phish is around 5 hours and after they've been reported, they will generally never be used again for actually attacking a victim. We do have some phishing feeds coming in but they are almost completely irrelevant based on the volume we see and very heavily prone to FPs - therefore, we've implemented generic rules to "see" the phishes. Facebook, for instance, isn't currently covered by these rules (we are focusing primarily on banking phishes) but it can be. However, this still doesn't solve the core problem, which is solved by our credential protection.

    Configuring your username/password within SafeOnline to be locked down to a specific domain will prevent any accidental phishing from taking your account information. We will immediately warn you if you are trying to enter your credentials outside of the accepted website, which prevents any phishing from taking place.

    Let me know if you have any questions with this :)
     
  16. papillonn

    papillonn Registered Member

    Joined:
    Oct 19, 2005
    Posts:
    117
    Location:
    TR
    how should i configure them?Is there any configuration?
     
  17. Habakuck

    Habakuck Registered Member

    Joined:
    May 24, 2009
    Posts:
    544
    Öhm, that still does not work for me... :doubt:
     
  18. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    :doubt: Have you tried with the newest v3.0.5.23 release? We've fixed a handful of issues with credential protection which were most likely preventing yours from working properly.
     
  19. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    If you visit: http://info.prevx.com/safehelp.asp and click Advanced Configuration (the last option) > Advanced Configuration Options, we've explained the advanced options + credential protection in there :)

    Let me know if you have any questions!
     
  20. ako

    ako Registered Member

    Joined:
    Nov 16, 2006
    Posts:
    627
    This was a good one! :)
     
  21. Phantasm

    Phantasm Registered Member

    Joined:
    Jul 29, 2009
    Posts:
    87
    When it comes to bad URL's just use

    MyWot.com it's the worlds best site advisor. (not including internet filters)
     
  22. Habakuck

    Habakuck Registered Member

    Joined:
    May 24, 2009
    Posts:
    544
    No, i didn't try it. I will do so if i find the time.
     
  23. papillonn

    papillonn Registered Member

    Joined:
    Oct 19, 2005
    Posts:
    117
    Location:
    TR
    How can i miss this helpfull documentation! thank you :)
     
Thread Status:
Not open for further replies.