False Positive | heyzine.com

[albertbal]

What are the subjects of the false-positive (domains, URLs, or IPs)?

• heyzine.com
• https://heyzine.com/
• http://heyzine.com/flip-book/7ec6330215.html
• https://heyzine.com/flip-book/7ec6330215.html

Why do you believe this is a false-positive?

I'm the heyzine founder and the technical lead. Our product is one of the world's top 10,000 most visited websites.

We distribute user-provided content, so we have systems in place and people screening the content to ensure there is no phishing on the millions of URLs on our domain.

We had many users complaining and we found out our main domain (heyzine.com) is on your phishing database. This is clearly an error.
You also detected this link which corresponds to phishing from a heyzine account we removed long ago: https://heyzine.com/flip-book/7ec6330215.html

Adding this specific link makes sense and we also took action as soon as we found it, but flagging the whole domain is a false positive that is impacting the rest of the millions of links we provide.

Could you please remove the main domain false positive? This is impacting our business and damaging heyzine's reputation.

Best regards,
Albert Balada
Founder
Heyzine
albert.balada@heyzine.com

How did you discover this false-positive(s)?

VirusTotal

Where did you find this false-positive if not listed above?

Many users complained LinkedIn was not allowing heyzine links. We checked on VirusTotal and we found out that Phishing Database was detecting it.

Have you requested a review from other sources?

We have not requested a review from any other sources.

Do you have a screenshot?

No response

Additional Information or Context

I created another issue here by mistake: https://github.com/Phishing-Database/phishing/issues/808

[phishing-database-bot]

Verification Required

@albertbal, thank you for submitting a false positive report! To help us verify your ownership of the affected domain(s), please complete the following steps:

1. Set a DNS TXT record for the domain(s) listed in this issue with the following details:

   • Record Name: _phishingdb
   • Record Value: antiphish-33306b26fe766154f9790152ea37b1c0610ebd98

   Your Verification ID: antiphish-33306b26fe766154f9790152ea37b1c0610ebd98

2. Wait for DNS propagation (this may take a few minutes to a few hours).

3. Reply to this issue once the TXT record has been set.

Important Notes

• Verification does not guarantee whitelisting. The Phishing.Database team will review your report after verifying ownership, but the decision to whitelist depends on further investigation and analysis.
• If the record cannot be set or you need alternative methods of verification, please contact us at contact@phish.co.za - preferably from the domain's official email address.

How to Check the TXT Record ?

You can verify that the TXT record is properly set using:

• Online tools like MXToolBox TXT Lookup.
• The command line:

  dig TXT _phishingdb.example.com
  

Thank you for your cooperation! We will address your issue as soon as possible after verification.

The Phishing.Database Project Team.

[albertbal]

DNS TXT record created

[phishing-database-bot]

Closing.

Domain(s) or IP(s) not found in the Phishing.Database project: heyzine.com.

-- We appreciate your help in refining this. Please let us know if anything seems incorrect.