Avast WEBforum

Consumer Products => Avast Secure Browser => Avast Secure Browser for Windows => Topic started by: polonus on December 24, 2018, 05:57:17 PM

Title: Why this address is given as Generic Malware?
Post by: polonus on December 24, 2018, 05:57:17 PM: Working with it and updating it....

See: https://www.maltiverse.com/hostname/cdn-update.avastbrowser.com
Consider: https://www.maltiverse.com/ip/104.20.83.113

What is the reason for these alerts?
Consider: https://www.virustotal.com/#/url/018ab69a4c927d63a6c58d1af96ec2f8631737c14b47e6a3018e3261e347bf1a/detection
Nothing on the mini-installer: https://www.virustotal.com/#/file/3b1bd1c2cb9907c8f46cfba849a4f3b3ac615d4ab11468fadad01733285aa025/detection

Update site is susceptible to MiM attacks:
Insecure SSL/TLS versions available
HTTP Strict Transport Security (HSTS) not enforced
HSTS header does not contain max-age
HSTS header does not contain includeSubDomains
HSTS header not prepared for preload list inclusion (info credits go to UpGuard).

polonus

SMF 2.0.18 | SMF © 2015, Simple Machines