Solved My sister got scammed today by a fake cake delivery website

[VladDracul]

Avast Free / AVG block this scam ??

Yes.AVG IS done his job.

Spoiler

 

[brambedkar59]

Dr. Web Classify it as Unwanted Website.

Spoiler

Edit: So far, I count 20 detections in total (including VT ones) as of right now.

Reported to Cisco Talos again with more details this time. If a major threat intelligence like Cisco detects it, then Google/MS might block this site at some point.

 

[nickstar1]

Kaspersky needs to get a better policy with fake stores sooo much of it as of lately it kinda is a security threat to the user. All the other vendors added detection but for the first time ever i see kaspersky being a slug.

It's simply because Kaspersky doesn't block fake/scam shopping sites. It's not in their policy. There is nothing more to it. They are probably afraid of blocking legit shopping sites by mistake, which could cost Kaspersky money. But not blocking fake store would cost users their money.
Most other vendors are not worried of it. You just have to show them the proof that the shopping site is fake and they'll block it.
This particular site doesn't have or inject any malicious code while ordering, so it doesn't fall into Kaspersky's "Data Loss and Threats Protection" category. Vendors like Avast has very specific "Scam:Store" category, Bitdefender has "Fraud" category, most vendors would put it under "Phishing". Kaspersky doesn't have a category for scam/fake shopping websites.
View attachment 280861View attachment 280862

 

[nickstar1]

Avast/avg just incorporated a fake website shield in their product not too long ago. Not sure how it works but has anyone had good luck with it?

 

[SeriousHoax]

Kaspersky needs to get a better policy with fake stores sooo much of it as of lately it kinda is a security threat to the user. All the other vendors added detection but for the first time ever i see kaspersky being a slug.

I agree with you. I have tried to make my case about fake shopping sites to them 4 times near the end of 2022 and all I got was similar responses to the ones I shared above. I even wrote a harsh reply to them the last time but that is something I shouldn't have done as I'm just talking to employees who are simply following their company policies.
I see that @harlan4096 has written them back and waiting for a response. I think he'll receive a similar response but a change in policy would be a better outcome for Kaspersky customers.

 

[brambedkar59]

Avast/avg just incorporated a fake website shield in their product not too long ago. Not sure how it works but has anyone had good luck with it?

Both detect it now (check post 39 & 41). I don't know if this was due to website being reported by me & other MT members, or if it was automated. VT still doesn't have Avast/AVG detections. I checked VT scan on 9th of Jan and it had zero detections.
Edit: Wait is Fake website shield different from their usual detections?

Update: Just received an update, Cisco Talos denied changing reputation.

Spoiler

 

[Shadowra]

I agree with you. I have tried to make my case about fake shopping sites to them 4 times near the end of 2022 and all I got was similar responses to the ones I shared above. I even wrote a harsh reply to them the last time but that is something I shouldn't have done as I'm just talking to employees who are simply following their company policies.
I see that @harlan4096 has written them back and waiting for a response. I think he'll receive a similar response but a change in policy would be a better outcome for Kaspersky customers.

I got the same answer, I didn't insist with them.
Quite disappointed that they didn't block it.

 

[harlan4096]

Anyway, I've replied their last verdict, asking for some explanations, also attaching this thread.

Hello,

Dear User,

Thank you for sending a request to Kaspersky!
Please note, this site can only be blocked by a legal decision.

Best regards, Senior Web Content Analyst
39A/3 Leningradskoe Shosse, Moscow, 125212, Russia Tel./Fax: + 7 (495) 797 8700 Kaspersky Cyber Security Solutions for Home and Business | Kaspersky Securelist | Kaspersky’s threat research and reports
Kaspersky Threat Intelligence Portal - get insights about suspicious files, hashes, URLs, IP addresses or domain names

 

[nickstar1]

Clearly Kaspersky needs to change it's ways/policy when all other popular AV vendors blocked it without question.

 

[Stargazer_Steve]

Looks like I'll be switching from Kaspersky back to ESET then

 

[TairikuOkami]

Clearly Kaspersky needs to change it's ways/policy when all other popular AV vendors blocked it without question.

Kaspersky is already on a thin ice, they can not block something willy-nilly. These days 1 Karen complains and everyone is going nuts about it.

 

[Stargazer_Steve]

NordVPN Light Threat Protection even blocked it & Kaspersky didn't

Spoiler

 

[brambedkar59]

Both detect it now (check post 39 & 41). I don't know if this was due to website being reported by me & other MT members, or if it was automated. VT still doesn't have Avast/AVG detections. I checked VT scan on 9th of Jan and it had zero detections.
Edit: Wait is Fake website shield different from their usual detections?

Update: Just received an update, Cisco Talos denied changing reputation.

Spoiler

View attachment 280873

Cisco changed reputation from "Neutral" to "Untrusted".

 

[flaubert1971]

No problem with Harmony Endpoint

 

[mlnevese]

Kaspersky allows access to the site but blocks the scripts as data leaking threat... sorry, detection is in Portuguese. In other words, the page opens but the user can't order anything from it.

Spoiler

 

[OTTO]

Bitdefender blocks this website saying that its fraudulent website.