Wrongly Blocked Site

sammyt05 · June 2017

Hi, I have a website that I have recently developed being blocked by F-Secure. I've read all the articles on getting a site unblocked and clicked the links to log a request to review and unblock the site, but none of the links worked either.

Could someone please review this site and unbloc from F-Secure - also could you tell me why F-Secure detected this site to be malicious?

Thanks.

Sam.

Näsäviisas · June 2017

Hi Sam

Could you tell, what site is the matter?
Specify! The name/adress, please.

I read your message and I did not find the sitename.

Waiting for more information.

NÄSÄVIISAS

Ukko · June 2017

Hello,

Sorry for my reply.

If you mean that you used F-Secure SAS (by "to log a request to review and unblock the site"-words) - usually it can take about three-four work days.

But if not (or just as additional re-check) you able transfer URLs to F-Secure SAS:

https://www.f-secure.com/en/web/labs_global/submit-a-sample#sample-url

This knownledgebase article explain about required steps. It can be useful to provide "more information" (as your mail-address for get feedback from F-Secure Labs; and categories like "Harmless page is blocked" - "Browsing protection" as indication that there is false positive suspected);

As my own suggestions and advices about potential reasons for such rating:

Spoiler

--> F-Secure able to use "third-party" common databases (harmful/malicious/suspicious/phishing websites); And there possible that someone randomly added your website to such list.

If there is mistake - so it will be "false positive" and F-Secure SAS can be useful to re-rate it;

--> There can be that page marked as "suspicious" (but not malicious); If I normally understand - as example - F-Secure Freedome do not create proper "wording" for suspicious-blocked-pages;

--> you able to re-check your website (domain/URL) under virustotal.com;

What if there some other companies rated your website as malicious too; If so - maybe you have to re-check situation about potential troubleplaces or recent changes; If there all Ok - maybe detection comes for IP/hosting; Or exploiting your website by someone;

With any of meanings F-Secure Labs (after using F-Secure SAS) should provide feedback/explanation about reasons for malicious-rating; If it will be not like that - maybe you able to re-ask them.
Generally there can be a lot of explanations/reasons: if there false-positive (it can be based on different points); if there malicious-rating as reasonable action (it can be based on a lot of potential vectors; if website is hacked or something else);

--> F-Secure able to use "third-party" common databases (harmful/malicious/suspicious/phishing websites); And there possible that someone randomly added your website to such list.If there is mistake - so it will be "false positive" and F-Secure SAS can be useful to re-rate it; --> There can be that page marked as "suspicious" (but not malicious); If I normally understand - as example - F-Secure Freedome do not create proper "wording" for suspicious-blocked-pages; --> you able to re-check your website (domain/URL) under virustotal.com;What if there some other companies rated your website as malicious too; If so - maybe you have to re-check situation about potential troubleplaces or recent changes; If there all Ok - maybe detection comes for IP/hosting; Or exploiting your website by someone; With any of meanings F-Secure Labs (after using F-Secure SAS) should provide feedback/explanation about reasons for malicious-rating; If it will be not like that - maybe you able to re-ask them.Generally there can be a lot of explanations/reasons: if there false-positive (it can be based on different points); if there malicious-rating as reasonable action (it can be based on a lot of potential vectors; if website is hacked or something else);

Thanks.

Wrongly Blocked Site

Comments

🚩 What Do You Think?

Categories