Google Safe Browsing is blacklisting Nomagic domains

Jean

https://www.hostarmada.com/blog/google-safe-browsing-and-google-blocklist/

As some of you may have seen, Google is reporting Nomagic password management service as a malevolent website, and some collateral damage was reported by some members to access our webmail as well.

We highly suspect that this is because of Vaultwarden, even though it's totally wrong of Google to react as such, without even an informational email to our abuse email address.

So far the best course of action is to flag this back to Google as an error.

Jean

To directly report https://vault.nomagic.uk as an incorrect Phishing Warning, you can go directly to:

https://safebrowsing.google.com/safebrowsing/report_error/?continue=&hl=en

Jean

We are not the only one (obviously): https://github.com/dani-garcia/vaultwarden/discussions/2353

Jean

Today I heard of the virustotal URL checker.

Our webmail is listed on 2/93, while vault.iram.fr is advertised by 11/93 vendors blocklists.

Jean

The webmail is only referenced by 1 'virus checker' now (Fortigate).
No change on Vaultwarden assessment yet.

Jean

After 3 weeks, no change of note. Google has not reconsidered and all our comments seems to have been sent to a black hole... ☹️
It's funny to see how many so-called security solutions blindly apply GoogleSafeBrowsing judgement though.

Jean

We have been cleared from Google Safe Browsing finally (!)

However, we can see that some questionable security solutions who subscribe to Google Safe Browsing still haven't updated their status:

Jean

It's hilarious to look at the various reports' 'details':

All of that for a perfectly viable and robust password manager solution...

Jean

I did another check 2 days ago : same same...

Jean

Today I submitted a false positive report to Kaspersky, as they are still flagging us. Let's see how long it takes.
I tried to do it with Sophos as well, but could not find any place to report false positive domain...

Quite painful to see how none of those companies double-checks, or even check back at GoogleSafeBrowsing results.

Jean

There is progress! Kaspersky did not react whatsoever, but we are down to 5 false positive (it has now been 6 months)

Jean

Still not completely out of the woods. I guess those are definitely not to be relied on their results...

Jean

A year and a half later, only 3 remain.