It's worth expanding just a little on the worst offending method of false positive generation which is “reputation” scoring. This is basically a cop out by the various antivirus companies that promise to protect users from everything, which as we all know is garbage. Some of the criteria they use for reputation scoring are:
- The website doesn't have much traffic. (Fantastic if you've just launched a new service because many of your potential visitors have just been excluded for no reason).
- Our crawler bot hasn't scanned your site yet.
- This program is not in our database. (So a lot of exciting, new and safe software is immediately excluded).
This isn't to suggest you should routinely ignore these warnings, but accepting the majority will be false positives, it is better to form your own judgment by using services such as Virus Total, URLVoid and Zulu.
- “It's free of malware, according to VirusTotal”.
- “It's a tiny 0.1 MB download, needs no installation, and VirusTotal says it's clean of all malware”.
Please rate this article: