John_038 Posted August 30, 2021 ID:1477397 Share Posted August 30, 2021 Hi, One of my customers sent me an email saying: "I wanted to let you know that when I click on your email to take me to your website, my malware filter, Malwarebytes, blocks me saying your website is dangerous." She also sent me a screenshot of message. See attached. My website serena-west.com is not dangerous. Can you please unblock it? Link to post Share on other sites More sharing options...
1PW Posted August 30, 2021 ID:1477486 Share Posted August 30, 2021 (edited) For Malwarebytes' staffers (info @John_038: https://www.virustotal.com/gui/url/68ccee4530342ae6ea690a0ef786f040a3d9a0d1bfc08c4b857af71ac8e90954/detection https://sitecheck.sucuri.net/results/www.serena-west.com https://www.ssllabs.com/ssltest/analyze.html?d=www.serena-west.com&s=34.199.78.82 Edited August 30, 2021 by 1PW Link to post Share on other sites More sharing options...
gonzo Posted August 30, 2021 ID:1477519 Share Posted August 30, 2021 Based on the first set of test results (VirusTotal), our researchers looked deeper. They have decided that the site should be blocked by our premium product. I cannot lift the premium block based on their findings. Link to post Share on other sites More sharing options...
John_038 Posted August 30, 2021 Author ID:1477524 Share Posted August 30, 2021 @gonzo Only 9 out of 89 security vendors flagged our site (that's roughly 10%). We are actively reaching out to these 9 vendors to see if they can unflag our site. What can we do to get Malwarebytes to lift the premium block? Link to post Share on other sites More sharing options...
John_038 Posted August 30, 2021 Author ID:1477525 Share Posted August 30, 2021 @1PW thanks for doing all the testing and providing the results. 1 Link to post Share on other sites More sharing options...
gonzo Posted August 30, 2021 ID:1477530 Share Posted August 30, 2021 The issue is not 9 of 89, it is WHICH 9. Those sites have high reliability. If I saw one phishing block (particularly by one specific vendor), I might ignore it. These results were cause for concern. Considering the type of test results, I would focus efforts on checking code related to login and account maintenance, looking for any changes/updates. Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted August 30, 2021 Root Admin ID:1477531 Share Posted August 30, 2021 https://themarkup.org/blacklight https://observatory.mozilla.org/analyze/serena-west.com https://safeweb.norton.com/report/show?url=serena-west.com The site appears to need more cleaning if you want others to remove their blocking Link to post Share on other sites More sharing options...
John_038 Posted September 6, 2021 Author ID:1478565 Share Posted September 6, 2021 (edited) @gonzo Can you please relook at the test results for our URL (serena-west.com)? We have reached out to all of the security vendors and now only 1 out of 89 have flagged us. Can you please unblock our site with your premium product. https://www.virustotal.com/gui/url/68ccee4530342ae6ea690a0ef786f040a3d9a0d1bfc08c4b857af71ac8e90954/detection https://safeweb.norton.com/report/show?url=serena-west.com https://sitecheck.sucuri.net/results/www.serena-west.com https://www.ssllabs.com/ssltest/analyze.html?d=www.serena-west.com&s=34.199.78.82 Edited September 7, 2021 by AdvancedSetup corrected font issue Link to post Share on other sites More sharing options...
1PW Posted September 6, 2021 ID:1478569 Share Posted September 6, 2021 https://securityscan.getastra.com/malware-scanner?site=https%3A%2F%2Fwww.serena-west.com#results https://themarkup.org/blacklight?url=www.serena-west.com Link to post Share on other sites More sharing options...
Staff Solution JPopovic Posted September 7, 2021 Staff Solution ID:1478600 Share Posted September 7, 2021 Hello, The block will be removed. Thank you. Link to post Share on other sites More sharing options...
gonzo Posted September 7, 2021 ID:1478681 Share Posted September 7, 2021 Now that all premium blocks have been removed, the reputation block has also been removed. Please allow 15-30 minutes for changes to take effect. Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now