Part of our web app marked as phishing

[Cristiano Betta]

Hi, I am one of the founders at Gr4vy. We are a payment orchestration platform, and as part of this, we have a hosted payment form called "Secure Fields." These fields allow our customers to collect card data in a PCI-compliant way, much like Stripe, Braintree, Adyen, and Checkout would do.

We noticed last week that one of the frames we use for this product has been marked as dangerous due to phishing. We have reported it to be re-analyzed but no luck so far. This is affecting one of our customer go-lives, and I'd love to know if there's any other way to get this resolved or to get some guidance on what we might be doing that marks this as dangerous.

https://opentip.kaspersky.com/https%3A%2F%2Fsecure-fields.sandbox.grammarly.gr4vy.app%2Fcontroller.html/?tab=lookup

[harlan4096]

Welcome to Kaspersky Community.

 

I have just reported to K. analysts the possible false positive, just wait the final verdict!

[Guilhermesene4096]

@Cristiano BettaWelcome

I sent the website for analysis by Kaspersky laboratories.

 

The analysis may take a few hours or days (normally it doesn't take long), so I ask that you please wait.

 

If it is considered a false positive, it will be removed from detection in the next update of your Kaspersky product.

 

You can add the site exclusions (on your device only) so do:

 

Spoiler

• Open the Kaspersky interface
• In the lower left corner select the gear symbol (setting)
• Click "Security Settings"
• Scroll down and click → Exclusions and actions on object detection
• Scroll down again and click → Manage exclusions
• Click "Add"
• Under "File or folder", select the file or folder to exclude from scanning
• Under Protection components, select "All components" or a specific component you want
• Under "Status", select → Active
• Click → Add
• Click → Ok
• Click → Save

Edited January 22 by Guilhermesene4096

[harlan4096]

Quote

 

Hello,

Dear User,

Thank you for sending a request to Kaspersky!
We have checked the link you sent us.
It has been confirmed as a false positive and excluded from our data loss threat protection databases.

Best regards, Senior Web Content Analyst
39A/3 Leningradskoe Shosse, Moscow, 125212, Russia Tel./Fax: + 7 (495) 797 8700 http://www.kaspersky.com https://securelist.com
https://opentip.kaspersky.com/ - get insights about suspicious files, hashes, URLs, IP addresses or domain names