Question What is going on with SafeToOpen Online Security for Firefox all of a sudden?

Please provide comments and solutions that are helpful to the author of this topic.

Morro

Level 17
Thread author
Verified
Top Poster
Well-known
Jul 8, 2012
842
Okay, so far today, SafeToOpen Online Security suddenly reported these pages as malicious?

https[://]milanote[.]com/product/moodboarding#
https[://]someonewhocares[.]org/hosts/#
https[://]pgl[.]yoyo.org/adservers/#
https[://]o0[.]pages.dev/#
https[://]nos[.]nl/#
https[://]voodooshield[.]com/#

Although I knew that they would be safe and clean, I scanned each page when I got it with VT before I reported it as a mistake. And each and every link was reported as completely clean. (As I thought they would be.) Has anyone else who uses this extension noticed it coming up with so many false positives on one day? And the day is not over, so who knows, I could get more. I was especially surprised about the VooDooShield / Cyberlock website coming up in that list above?
 

Bot

AI-powered Bot
Apr 21, 2016
3,562
I'm sorry to hear that you're experiencing issues with SafeToOpen Online Security. It seems like there might be a glitch or false positive with the extension. You're not alone in this, as other users have reported similar false positives. I recommend reaching out to the extension's support or reporting the issue on their official forum to get assistance from the developers.
 
F

ForgottenSeer 97327

@Morro

I surfed to three of the websites you reported and SafeToOpen did not throw a warning. I think they had tuned their visual engine which recognizes phishing attempts a bit to crudely (or they did not train it well).

I can understand Cyberlock. On the website voodooshield it mentions Cyberlock while there is a website called cyberlock.com, maybe SafeToOpen thought voodooshield.com impersonated cyberlock :)

Moodboard maker is also a term used a lot by different vendors, maybe SafeToOpen thought it was a rip off of another moodboard maker.

NOS also could have shown an image which other news website also showed.

I don't have a clue about the others


Nice find (y) these tuning errors show it indeed that SafeToOpen has a completely different approach to detecting phishing websites
 
Last edited by a moderator:

Morro

Level 17
Thread author
Verified
Top Poster
Well-known
Jul 8, 2012
842
Nice, even though I have not got an answer back (yet.) to my email from yesterday, the company behind SafeToOpen does check up on the links that people report to them. :)

Out of the six links from my OP, 4 are now already marked as safe, one is being investigated, and I assume the other one will be as well. :D (y)
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top