XFour Posted May 3 ID:1634139 Share Posted May 3 I know the UK government isn't the most secure body in the world but I'm fairly sure they're not running a ransomware campaign. 😉 Tried to access www.api.gov.uk and was blocked due to ransomware. I think it's fairly safe to whitelist the entire gov.uk namespace. Link to post Share on other sites More sharing options...
Staff BjelakovicL Posted May 3 Staff ID:1634140 Share Posted May 3 Hi, Can you please check if you're using the latest database? Neither domain nor IP listed are on our blocklist. Link to post Share on other sites More sharing options...
XFour Posted May 3 Author ID:1634142 Share Posted May 3 MalwareBytes showing as up to date. Log file also attached. Malwarebytes Website Blocked Report 2024-05-03 132016.txt Link to post Share on other sites More sharing options...
Staff BjelakovicL Posted May 3 Staff ID:1634149 Share Posted May 3 Please try reinstalling Malwarebytes. Link to post Share on other sites More sharing options...
Porthos Posted May 3 ID:1634201 Share Posted May 3 @BjelakovicL Got the following when I went to api.gov.uk Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 5/3/2024 Protection Event Time: 11:17 AM Log File: 9e89c514-0968-11ef-bbd8-001a7dda7102.json -Software Information- Version: 5.1.3.110 Components Version: 1.0.1219 Update Package Version: 1.0.84205 License: Premium -System Information- OS: Windows 10 (Build 19045.4291) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe, Blocked, -1, -1, 0.0.0, , -Website Data- Category: Malware Domain: co-cddo.github.io IP Address: 185.199.110.153 Port: 443 Type: Outbound File: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (end) Link to post Share on other sites More sharing options...
Staff TeMerc Posted May 3 Staff ID:1634213 Share Posted May 3 24 minutes ago, Porthos said: @BjelakovicL Got the following when I went to api.gov.uk Malwarebytes www.malwarebytes.com -Log Details- Protection Event Date: 5/3/2024 Protection Event Time: 11:17 AM Log File: 9e89c514-0968-11ef-bbd8-001a7dda7102.json -Software Information- Version: 5.1.3.110 Components Version: 1.0.1219 Update Package Version: 1.0.84205 License: Premium -System Information- OS: Windows 10 (Build 19045.4291) CPU: x64 File System: NTFS User: System -Blocked Website Details- Malicious Website: 1 , C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe, Blocked, -1, -1, 0.0.0, , -Website Data- Category: Malware Domain: co-cddo.github.io IP Address: 185.199.110.153 Port: 443 Type: Outbound File: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (end) Thanks for bringing this to our attention, the data ion this log was helpful. We've reviewed the data from the site again and have determined it no longer warrants being blocked so we've disabled the block in our database. Removal should be reflected in the next database update going out in a few hours or so. Link to post Share on other sites More sharing options...
Recommended Posts