Avast WEBforum

Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: bendtan on April 09, 2021, 10:33:14 PM

Title: False Positive Browser Threat (fonts.shopifycdn.com)
Post by: bendtan on April 09, 2021, 10:33:14 PM

Hi,
I work with a website, called, mobileigo.com.
When I loaded this site today in Chrome, my Avast flagged the site/connection with a URL Phishing browser threat. I asked Shopify tech support about this, and they say that Avast is erroneously flagging the URL as a phishing URL.

How do I report this to Avast as a false positive assuming the Shopify tech team is correct?
Thanks,

Title: Re: False Positive Browser Threat (fonts.shopifycdn.com)
Post by: Pondus on April 10, 2021, 12:00:28 AM

Quote

How do I report this to Avast as a false positive assuming the Shopify tech team is correct?

https://forum.avast.com/index.php?topic=14433.msg1289438#msg1289438

Title: Re: False Positive Browser Threat (fonts.shopifycdn.com)
Post by: bendtan on April 10, 2021, 07:50:38 PM

Thank you!

Title: Re: False Positive Browser Threat (fonts.shopifycdn.com)
Post by: polonus on April 10, 2021, 10:25:31 PM

See retirable JQuery libraries flagged here: https://retire.insecurity.today/#!/scan/f31480bc5d6af4109bd7f274269d6cddbf4bccee9247d783ffd558ef7c8e3fba

And again we see the following script running there, that seems to play a role in all those apparent FP's now given by avast's:
Javascript 1   (external 1, inline 0)
-d3uvwl4wtkgzo1.cloudfront.net/​e8af8301-45e2-41c6-9212-9421ce1b1dc7.js  (also Amazon seems involved with a CallBack issue).
I have it blocked by my client, that's why the script kicking up an error.

polonus

P.S. I PM-ed someone from avast team to give a final verdict through avast threat lab. Curious what their reply will be.

Damian