![]() Rather, Sucuri's scanner claimed to have found hidden SEO spam that was "known but harmful". However, a look at the links to the detections showed me that they were not really malware detections. Several malware detections were reported under various URLs. When I saw the result of the audited page, my heart dropped. This check is free of charge and usually provides a more detailed analysis of what is going on. So it was obvious to enter the URL of the criticized website directly into Sucuri SiteCheck and have a check performed (there are other 3rd party vendor, who can do similar checks). I use the SiteCheck of the security provider Sucuri here occasionally to check my website for possible infections. And there was the info that Sucuri SiteCheck's security solution flags the page as malicious. Virustotal's page provided the notice that the target page had been noticed back in February 2019 – three years ago – as malicious. Panda was not listed as a virus scanner – and most of scanners did not raise any concerns about the website. When I typed in the URL of the suspicious website (unfortunately I no longer have a screenshot), only one hit was reported. On the website, the URL of the website to be tested can be entered on the URL tab. To find out if a website is detected as malicious, I like to use the Google-powered for a first test. ![]() For the current case with this foreign website I proceed several checks, I would like to briefly describe below. On your own blog, I would immediately use the internal scanners and tools and also third party scanner. So far, in the 15 years the blogs have been around, I've gotten through blogging life cleanly.Īt this point the question would be: How do you proceed if you suspect an infection. Occasionally I get reports that internal files of plugins have been modified – code inspection then shows that often the versions between the WordPress repositories and the blog diverge for a few days – then there are false positives. In addition, I can trigger further scans in cases of suspicion. I was then able to clear this up with a contact to the support of this site and was unblocked again.īehind the scenes, the blogs here at run both virus scanners and security solutions that should prevent or at least report compromise. But a broken AI of a internet security solution interpreted the fragments as an attempt to redirect readers to the phishing pages and my site has been blocked. These were no longer selectable as URLs due to blanks in the URL. So far they were all false alarms – the most blatant case why this blog has been blacklisted before: I had documented a phishing attempt in a post and included URLs to phishing sites. I regularly get such false alerts when users tell me that their security software warns about. This can be true if a website is compromised. Users received a warning, that the site is malicious, if they attempt to surf to the internet address. The mail already indicated that the site in question was blocked by security solutions, because it has been blacklisted. ![]() However, since sports initiatives are often carried out by volunteers, I decided to sacrifice a few minutes and take a look at the facts. Normally I am not active in consulting measures in the security area. No idea if the block is justified, but for weeks this site has been blocked by the L***. But I could quickly see from the signature that it was not SPAM, because the message came from the secretariat of a German sports federation and read: It was an e-mail from an unknown sender, that at first made me wonder.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |