Half a year ago, I've tried to download a specific ".exe" file (from here: http://www.emptyloop.com/unlocker/). It was indicated as a potential threat. Of course, I've fo…
Half a year ago, I've tried to download a specific ".exe" file (from here: http://www.emptyloop.com/unlocker/). It was indicated as a potential threat. Of course, I've found a workaround, and thought that this is some kind of a temporary issue.
Today, the same file is still blocked: firefox says "Blocked: May contain a virus or spyware ...", chrome also says "This file is malicious". I still believe that this is a false-positive. VirusTotal shows 2/55 ( https://www.virustotal.com/en/file/b3284358029388637e642077f99e81e81144d8dab2f2623e263dbb5b625be746/analysis/ ).
I've looked through
- "False positive on docx from facebook" ( https://support.mozilla.org/en-US/questions/1048742 ),
- "How does built-in Phishing and Malware Protection work?" ( https://support.mozilla.org/en-US/kb/how-does-phishing-and-malware-protection-work )
- "How to prevent Firefox from blocking my software download if Google Safe Browsing simply doesn't respond to false positive reports in Web Master Tools?" ( https://support.mozilla.org/en-US/questions/1054121 )
And I feel like I understood the basics. The question is - are there any ways to report this false positive, so that it would be fixed? Either firefox-specific, or GoogleSafeBrowsing-wide? Any positive experience, "success-stories"? Currently, I've found the following ideas:
- Report via Google webmaster tools - probably won't work, since it's not my site.
- Try to contact those 2 of 55 AntiVirus companies, and ask them to fix those signatures - maybe after that it would get removed automatically?
What guarantees of accountability and transparency exist in Mozilla's phishing and malware protections to prevent false positives?
A site of mine has been blocked "because it may trick you into doing something dangerous" etc. The phrasing suggests that you aren't even sure if there is a real problem…
A site of mine has been blocked "because it may trick you into doing something dangerous" etc. The phrasing suggests that you aren't even sure if there is a real problem, but you're blocking it just in case. Nowhere is the cause specified. There are no details of what behaviour or code on the site caused it to be listed, or who listed it, or why. Just a big message saying that this is a Deceptive Site. There's no one I can talk to about this, no way to find out any information whatsoever - there's not even any notification that the site has been blocked. All of which makes it just about impossible to actually FIX whatever is causing this issue (assuming that there is one, and I haven't just been reported randomly by some troll).
So, to sum up: there's no useful information, no transparency and no accountability anywhere in this process. Just Google throwing their weight around and you letting them.
I'm not saying that there is no problem - there may be a legitimate issue that needs addressing. What I'm saying is that the way the Mozilla Foundation has dealt with the problem makes it more or less impossible to actually do that addressing. Who exactly does that help? How does this make anyone's internet experience better?