Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
500 Views 1 Reply Latest reply: Oct 15, 2012 2:42 AM by asabban RSS
fwmonitor Newcomer 40 posts since
Dec 2, 2011
Currently Being Moderated

Oct 12, 2012 7:01 PM

Application ID detection URL.Host fuzzy match - false positive

Hello,

 

many customers complain about wrong AppID detection:

 

all URL.Hosts which contain the string "facebook.com" are detected as "Facebook", here some examples:

www.sex-facebook.net - don't click it :-)

www.hack-facebook-password.org "Potential Hacking/Computer Crime, Malicious Sites" "High Risk"

www.facebook.vc -  "Dating/Personals"

 

 

the same for XING (www.philboxing.com, www.boxing.com), Twitter (www.estwitter.com), Gmail (www.strongmail.com), etc.

 

for reliable detection of the application ID the database should be based on Host.BelongsToDomain regex.

 

best regards

More Like This

  • Retrieving data ...

Bookmarked By (1)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points