Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

run.plnkr.co detected by Microsoft SmartScreen as phishingpage #542

Closed
SteBeSec opened this issue Nov 23, 2020 · 7 comments
Closed

run.plnkr.co detected by Microsoft SmartScreen as phishingpage #542

SteBeSec opened this issue Nov 23, 2020 · 7 comments
Labels
bug Something isn't working

Comments

@SteBeSec
Copy link

Describe the bug
Microsoft SmartScreen detects run.plnkr.co as a phishing site.

To Reproduce
Steps to reproduce the behavior:

  1. Open Edge Brwoser with an enabled SmartScreen Feature OR use Chrome with the Extension "Microsoft Defender Brwoser Protection"
  2. Navigate to http://run.plnkr.co
  3. The SmartSCreen Blockpage appears, stating that the page contains a phishing threat:
    image

Expected behavior
No detection from Microsoft SmartScreen Filter (I already reportet this site as safe, but it is much faster if the siteowner takes action)

Screenshots
From Edge:
image

From Chrome with the Extension "Microsoft Defender Brwoser Protection"
image

From Defender ATP Alert:
image

Desktop (please complete the following information):

  • OS: Windows 10
  • Browser: See above
  • Version 1909
@SteBeSec SteBeSec added bug Something isn't working needs-triage This is an un-triaged issue labels Nov 23, 2020
@ggoodman
Copy link
Contributor

Hello @SteBeSec, I'll take a look at this. It seems as if Microsoft Defender has mistakenly gone and block-listed the whole subdomain.

@ggoodman ggoodman removed the needs-triage This is an un-triaged issue label Nov 23, 2020
@SteBeSec
Copy link
Author

SteBeSec commented Dec 2, 2020

Short update from my side: I opened a supportrequest at Microsoft about this issue, the support is stating that they have a problem whitelisting "run.plnkr.co" as it seems that "the page looks broken".
Any progress on your side so far?

@ggoodman
Copy link
Contributor

ggoodman commented Dec 2, 2020 via email

@SteBeSec
Copy link
Author

SteBeSec commented Dec 4, 2020
edited
Loading

Hello,

thank you for this point - I adressed this to Microsoft and hope they will see that it would be illogical to allow https, but block http.

@SteBeSec
Copy link
Author

SteBeSec commented Dec 7, 2020
edited
Loading

Microsoft replied to me that they finally whitelisted run.plnkr.co. My test was fine and the SmartSCreen detection is gone now, could you please perform a test on your side? Thanks :)

@ggoodman
Copy link
Contributor

ggoodman commented Dec 7, 2020

Hi @SteBeSec, it looks good to me as well!

Thank you for your diligent follow-up on this. I have yet to get a response via the official dispute channel despite being the owner of the domain 🤷‍♂️.

Cheers for all your work!!

@SteBeSec
Copy link
Author

SteBeSec commented Dec 7, 2020

Thank you for the confimation, I think this issue can be closed. :)

@SteBeSec SteBeSec closed this as completed Dec 7, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ggoodman @SteBeSec