Releases page flagged as Unwanted Software by Google Safe Browsing #160
Comments
|
Can confirm. I had to update and this error popped up, after clicking "ignore the risk", and downloading the exe, Firefox flagged it (the exe) as harmful and may contain viruses or whatever. |
This comment was marked as off-topic.
This comment was marked as off-topic.
|
https://github.com/rcmaehl/MSEdgeRedirect/releases is blocked I honestly don't know what to make of this @ChrisTitusTech I've already replied to twitter but sorry that you got caught in the crossfire. |
|
Looks like @isaak654 and Sandboxie-Plus had the same issue a while ago. I'm going to review the install/uninstall process to see if that can improve things. |
rcmaehl
added
the
critical
|
I was able to bombard youtube via Twitter, and the strike was reversed. Still a bit a bummer for an awesome project. It's not the creators fault, just googles algo go wonky. |
|
TODO:
|
rcmaehl
changed the title
|
Actions taken so far:
Continuation:
|
|
I think it may be probably due to this issue plaguing GitHub recently https://www.bleepingcomputer.com/news/security/35-000-code-repos-not-hacked-but-clones-flood-github-to-serve-malware/ |
|
@micwoj92 Any way to have a new release remove assets from old releases during github actions CI? |
|
No idea. I have quickly looked and there are couple "delete assets" actions on github marketplace with various degrees of feature richness and configurability. |
Yeah, saw those. Just wanted your opinion since a lot of them don't show a lot of usage. |
|
Same problem with Firefox, both when opening page and when opening the .exe file. |
|
Reported a false positive and thank you. This so works. I can finally use search. |
|
Can we get new release soon? The old file is still flagged, making it unable to install on business hardware :C |
Yep. Will be prioritizing getting a new Webdriver based mode added this weekend and hopefully have 0.7.1.0/0.8.0.0 out. |
|
Webroot also reports this as a threat. |
Submitted a support ticket |
|
It's like security and AVs are going backwards, to the 90's whitelist by hand trash. Yesterday Defender started FP my scripts. FFS! |
Yep, you as well! |
|
This issue is popping back up again with the latest version. |
|
It's popping back up again when downloading the .exe file and the .zip file. |
|
Looks like they flagged the entire repo this time... Woooo |
|
Someone asks Mozilla why they flagged the exe file as potentially unsafe. They must provide an answer. This is unacceptable. |
|
Unfortunately, they neither have to, nor do they usually, provide a reason. They are a private company. Also, usually, they DONT KNOW why its been tagged as malicious. Heuristics are usually black boxes rather intentionally to keep actual malware manufacturers from knowing what to do to avoid detection |
|
I wouldn't be surprised if someone else suggested this in the past; I think the best way to ultimately resolve this issue is by the developer providing a signature which could then be bundled with the installer. After all, a lot of viruses out there is being released without a known publisher, but if it's a signed piece of software, then that would most likely help with making this software trusted by big tech. Unless of course, Microsoft is actively paying to have this software flagged as a PUP. Or they would try using the "Embrace, Extend, Extinguish" tactic. Then again, Microsoft owns Github... |
|
Code Signing Certs arent cheap, and even that isn't guaranteed to fix the issue. Google just shouldn't label something as malicious without a due process that actually works to remove that label should it be (and it often is) incorrect, and the rest of the industry shouldn't allow them to get away with having as much control as they do |
|
Someone I know had connections to google and was able to get this escalated and fixed. |
|
We shall see how long it lasts this time, I prophesize not long |
Yep. It's showing as resolved. Well damn. Big thank you! |
|
Page is no longer blocked; however the downloads still are and smartscreen blocks the executable, fyi |
Interesting... |
|
Had no more issues when downloading, went through smoothly. No blocked page, no smartscreen and not even a warning when downloading (maybe my settings but idk) |
|
Maybe remove the "help us get off google's blacklist" option in installation since this is resolved? |
Possibly |
|
Chrome download blocks it with standard security enabled :/ |
|
Chrome also blocks downloads from the official psn servers, its not very smart lol. Honestly, probably not much that can be done about it, as even if they are convinced to remove it, it will just creep back in at some point either way |
This is actually normal behavior for a .EXE file. If you go to some scam site they'll initiate a download of an exe that poor Grandma will install without thinking. It's the flag on the web that sucks |
|
@vonDubenshire It doesn't seem to be for every EXE or ZIP file. It seems you can talk with Google to get them to change it. Squarespace did this for their customers, and there's no inherent reason that a file from a Squarespace site would necessarily be virus free. @sguergachi That said, Chrome isn't completely blocking the file. There is a workaround while staying in Standard Safe Browsing. Rather than deleting the file from the list when prompted, close the dialog and then click on the Download button, and then click Full Download History. There you will be given the option to keep the file. |
|
and others
Describe the request
The releases page of this repo has been flagged as malicious by Google, resulting in a big red warning in Chrome and Firefox (possibly other browsers too). As a result downloads are blocked as well and need to be allowed manually.
Screenshots
Desktop (please complete the following information):
Additional context
Related:
https://geekflare.com/tools/tests/3o910hetl
https://twitter.com/christitustech/status/1553445177221586947
The text was updated successfully, but these errors were encountered: