Author Topic: Avast catches phishing site but does nothing to permanently blacklist/block.  (Read 979 times)

0 Members and 1 Guest are viewing this topic.

Offline Wayne158

  • Newbie
  • *
  • Posts: 12
When I open ANY site in Edge, the real site launches, then a second later a new tab opens, you see phishing sites real address for a split second, then an imposter site will materialize.

Do you know how old it gets killing bogus tabs 30 times a day, 7 days a week? FOR MONTHS??!!
I actually contacted tech support about this issue months ago and this is no lie, was told "well it doesn't appear to be malicious" which I translate as "We don't know how to resolve, so live with it."

Initially Avast would flag it and I'd get an avast placeholder page that said bad site in the offending tab and an Avast pop-up window saying saying we blocked this site (see attachments)

It is so bad I can get the tab page and the Avast popup anytime I want to. That is how I got and screen shotted the two jpg's.

It gets better. 
Whoever was the bad actor behind the phishing site figured out how to get past Avast security so the Avast warning tab and popup went away but the same behavior continues to this day.
Something has changed in that Avast is flagging the attack again.

THE OFFENDING ADDRESS IS IN THAT AVAST POPUP 
                              FIX IT


You know what the saddest part is, that I envision bad actor is ROFL about?
When I open Avast the phishing site is right behind it launching.
Ain't that a hooT
 
« Last Edit: May 12, 2022, 05:11:35 AM by Wayne158 »

Offline Wayne158

  • Newbie
  • *
  • Posts: 12
PART TWO
Avast tab opening then phishing site opening. SEE ATTACHMENT
Note the open tabs. Last one is where phishing site tried to open after I launched 2nd legit Avast tab.
« Last Edit: May 12, 2022, 05:20:24 AM by Wayne158 »

Offline r@vast

  • Avast team
  • Massive Poster
  • *
  • Posts: 2771

Offline Wayne158

  • Newbie
  • *
  • Posts: 12
So you are telling me Avast can't handle anything but plain vanilla fresh install of anyone's browser. Or use your browser. That's how I interpret that article.
Which means Avast isn't robust enough to block site from launching phishing tab unless it is configured your way? You can catch but you can't block??

You do know that address that initially pops up in your warning IS a problem site? Google is good for helping me figure things like that out.
It is good that Avast catches the attack. What my beef is, is that I, the user, has to close the launched phishing page 30 times a day because you can't block the attempt.

I get security patches from Microsoft it seem like everyday. Microsoft isn't telling the user it must not tweak or customize Windows, Office 365 or Edge. Microsoft just asks people and businesses to report the problem, they validate the hole that is allowing bad actor in, and closes vulnerability via patch.
Make me wonder if Microsoft is really who is doing all the heavy lifting here to catch virus, malware, ransomeware and phishing attacks

Offline r@vast

  • Avast team
  • Massive Poster
  • *
  • Posts: 2771
Hi,

Understandably, it can be frustrating. Please accept our apologies for any inconvenience caused.

The source of these malicious connections is generally in the browser settings - either a malicious extension or website-specific settings.
The fastest way to resolve similar situations is usually by resetting the browser to the default settings.



Offline Wayne158

  • Newbie
  • *
  • Posts: 12
As a final addendum to this help question. I found and blocked specific site and all my problems stopped.