In addition to providing one of the largest extensions platforms in the Chrome Web Store, Google also develops its own extensions. Sometimes, they are added to complement the websites of their services, while at other times the company launches them in order to improve the security of its users.
A Password Checkup, launched in February so that the browser does not warn when one of our passwords has been exposed, now adds ‘ Suspicious Site Reporter ‘, an extension that will allow the user to send reports to the Chrome secure browsing team when we detect that a web It can be malicious.
An orange flag will warn us of possible risks
‘Suspicious Site Reporter’ is designed so that Chrome users communicate to Google that a website can have malicious purposes, such as cheating through phishing or installing malware on computers. The company wants its users to collaborate, but it does not leave them all the work.
The flag of the extension icon will be green if the browser finds no reason to doubt the web we are visiting at that time, or orange if it could potentially be dangerous. The problem is that the reasons to be marked as orange do not seem too strong, and just for not being in the ranking of the 5,000 most visited websites, it may be suspicious for Google.
Obviously, it is just a matter of metrics to alert users to visit dangerous websites that are created from time to time, but it is surprising that any website out of 5,000 leaders has an orange flag. Another reason for the user to suspect a website is not having visited the site in the last three months, which again alerts the user that the page may not be created with good intentions.
It is good to be notified in this way, but it is also true that if even trusted websites are marked as orange, the user will not distinguish what can be wrong from what is not. In any case ‘Suspicious Site Reporter’ is a very direct way to be able to report on a site that we create really suspicious. By sending it, Google receives the URL, IP address and, optionally, a screenshot, DOM content with the HTML of the site and web that has taken us referred to that web.
After receiving the report from the users, the Chrome Safe Browsing team will analyze the websites, and if they really find that the reported websites are problematic, they will be included in their list of deceptive sites. It will not make those websites inaccessible from Chrome, but it will warn the user with its classic red Safe Browser alert screen to prevent the website from being visited. Inclusion in the list will also cause other browsers to also display the red alert when visiting said websites.
Additionally, since yesterday, Chrome 75 (and without having installed extra extensions) will also display notices when we visit websites that may be generated to deceive, like those that take advantage of the fact that we sometimes misspelle their links. In ZDNet they set the example of paypai.com instead of paypal.com. What Chrome does here is to compare the unknown URL with the websites that we have visited recently, and if there is a certain similarity, it will give a warning to the user.