Google changing Chrome malware, phishing warnings

Google changing Chrome malware, phishing warnings

Summary: New designs for interstitial warning pages for malware and phishing sites detected by Google Safe Browsing are simpler.

SHARE:
TOPICS: Security, Google
11

As announced by Google engineer and "usable security researcher" Adrienne Porter Felt on Twitter, the newest designs for malware and phishing site warnings from Google Chrome have gone out on the Canary and Dev channels.

Google Safe Browsing is a service that maintains blacklists of URLs of sits that contain phishing and malware. It provides an API for other software to use, and is used by both Apple Safari and Mozilla Firefox. Microsoft uses their own SmartScreen service.

When Chrome encounters a site which Safe Browsing says is malicious, it raises an interstitial warning page like those below. Firefox and Safari have their own warning pages. The new Chrome warning pages are only on the Dev and Canary distributions, not the Beta or Stable.

This will be the new malware warning page:

SafeBrowsing1

This is the old malware warning page:

SafeBrowsing2

This will be the new phishing warning page:

SafeBrowsing3

This is the old phishing warning page:

SafeBrowsing4

The new designs are simpler, but perhaps the absence of the cartoon image is intended to induce the user to take the warning more seriously.

Topics: Security, Google

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

11 comments
Log in or register to join the discussion
  • No cutsey graphics?

    No cutsey graphics? Awwwww. . .
    CobraA1
  • To the point

    I like the new warnings. They are to the point about the risk to a user and why they are blocked. Most users do not need details but a warning that is specific enough to know what could happen.
    Linux_Lurker
  • Does Google Chrome

    include itself?
    Mujibahr
    • Web sites silly...

      ....
      daikon
      • When Using Google Chrome

        EVERY website is a phishing site!
        Mujibahr
        • Nope

          Nope !
          mytake4this
          • I guess you don't understand simple things

            Chrome is SPYWARE by design. You don't have to visit a specific website to be spied upon.
            wackoae
          • Baloney

            You fanbois are funny.... ;)
            daikon
        • I don't think you know

          what phishing is.
          Michael Alan Goff
  • Sorry Larry,

    Least useful article I read here in a long time.
    Rikkrdo
  • Related Blog

    We blogged about the actual events of a phishing phone c all in today's blog https://entrisk-technologies.com/best-phishing-phone-call-ever/ Check it out!
    EntRisk Technologies