Trust companies, also known as fiduciary services, handle highly sensitive financial information and are legally obligated to comply with stringent KYC, AML, and source of funds documentation requirements.
Trust companies, also known as fiduciary services, handle highly sensitive financial information and are legally obligated to comply with stringent KYC, AML, and source of funds documentation requirements.
26 June 2023
Ilie Galit, DevOps at Atfinity
In the digital world, trust is paramount. Atfinity recently faced a challenge when their app was wrongly classified as a malicious phishing attack. Our swift action resolved the issue quickly, however it took us a while to do so. Our situation highlighted to us once more the importance of proactively checking and addressing false phishing classifications for our web apps. With this blog post, I would like to guide you through the process of checking for false phishing classifications and how to resolve them.
A false positive in cybersecurity refers to the incorrect identification of a legitimate website or app as malicious. False positives can mean users cannot access your app and damage your reputation. It's crucial to address these issues as soon as possible. This is often easy: It’s also good to understand false positives also harm the reputation of the phishing database. If they have many false positives, users stop trusting their judgement. So it’s usually straightforward to report a false positive to them.
Two powerful tools to check if your web app has been flagged as a phishing attack are VirusTotal and URLVoid. These platforms aggregate data from multiple security vendors, providing comprehensive insights into the security standing of your online presence.
To use VirusTotal or URLVoid, visit their respective websites, enter your website's URL, and review the results. If flagged by one or more security vendors, it's crucial to address these issues immediately.
Resolve false positive classifications by contacting each security vendor that has flagged your website or app separately. Different vendors have different requirements for reporting false positives, so follow their specific guidelines.
When contacting security vendors, consider these tips for effective communication:
To minimise the risk of future false positive phishing classifications, there are a few things you can do:
The steps shown in this article represent a pragmatic and efficient approach to addressing false positive phishing classifications: Monitor your web app regularly to know if anything is wrong before your users do. If you are flagged falsely, report the false positives to all security vendors that flagged you. Even better, lower the risk of false positives by clearly telling users what they are logging in. As always, also keep your web apps secure to prevent actual attacks. Act promptly to safeguard your online reputation and ensure that your web app remains untarnished by unwarranted phishing flags.