False Positive | mail.trends.be

[OliverMartinCCCP]

What are the subjects of the false-positive (domains, URLs, or IPs)?

• https://mail.trends.be/optiext/optiextension.dll
• https://mail.trends.be/optiext
• https://mail.trends.be/
• trends.be
• trends.knack.be
• https://trends.knack.be/beleggen

Why do you believe this is a false-positive?

I believe this is a false-positive because we're the owners of these URL's.
We're a Belgian Media Company and have recently started writing articles concerning cryptocurrency and stock exchange and it seems we're getting more and more blocks across multiple vendors.

We're now writing to each one of them because we're starting to loose traffic & customers.
The Trends.knack.be URL's are from on of our websites, mail.trends.be/optiext is from our marketing mails (which redirects to sites s.a. trends.knack.be).

Example of mail.trends.be/optiext:
https://mail.trends.be/optiext/optiextension.dll?ID=dyvl_1eQrDjs_QnawCFyHByeD2gM6lnsWabPnUC_BaEwP_znAmnFT6qCBqISuYmzdbe1gvrSDAqgZA3Dxlz8KG8ddFMjVboYrJ0QFBUS

How did you discover this false-positive(s)?

VirusTotal

Where did you find this false-positive if not listed above?

I discovered this false-positive by reports from our customer not being able to access our content.

Have you requested a review from other sources?

I have requested a review from Microsoft Defender, DNS Belgium, Gridinsoft, MalwareURL and we're still ongoing.

Do you have a screenshot?

Screenshot

Additional Information or Context

I have also noticed that...

[phishing-database-bot]

Verification Required

@OliverMartinCCCP, thank you for submitting a false positive report! To help us verify your ownership of the affected domain(s), please complete the following steps:

1. Set a DNS TXT record for the domain(s) listed in this issue with the following details:

   • Record Name: _phishingdb
   • Record Value: antiphish-7171552b518d1af91164e27add9aaca9a54060ce

   Your Verification ID: antiphish-7171552b518d1af91164e27add9aaca9a54060ce

2. Wait for DNS propagation (this may take a few minutes to a few hours).

3. Reply to this issue once the TXT record has been set.

Important Notes

• Verification does not guarantee whitelisting. The Phishing.Database team will review your report after verifying ownership, but the decision to whitelist depends on further investigation and analysis.
• If the record cannot be set or you need alternative methods of verification, please contact us at contact@phish.co.za - preferably from the domain's official email address.

How to Check the TXT Record ?

You can verify that the TXT record is properly set using:

• Online tools like MXToolBox TXT Lookup.
• The command line:

  dig TXT _phishingdb.example.com
  

Thank you for your cooperation! We will address your issue as soon as possible after verification.

The Phishing.Database Project Team.

[OliverMartinCCCP]

Please note, this is posted with my personal GitHub account, but I failed to mention my professional address.
It's oliver.martin@roularta.be, I'm responsible for cybersecurity at Roularta Media Group.

[OliverMartinCCCP]

Our network team has let us know this has been added on saturday.
Could you let us know if you could validate our Domain?

[phishing-database-bot]

Closing.

Domain(s) or IP(s) not found in the Phishing.Database project: trends.be, trends.knack.be, mail.trends.be.

-- We appreciate your help in refining this. Please let us know if anything seems incorrect.