False Positive | corp.bnpparibasbank.ru

[R4inbowD4sh]

What are the subjects of the false-positive (domains, URLs, or IPs)?

https://corp.bnpparibasbank.ru/
corp.bnpparibasbank.ru

Why do you believe this is a false-positive?

BNP Paribas russia E-banking site corp.bnpparibasbank.ru is reported as Malicious on VirusTotal .
It is a false positive detection. Some other vendors have already reclassified the site as Clean.

How did you discover this false-positive(s)?

VirusTotal

Where did you find this false-positive if not listed above?

https://www.virustotal.com/gui/domain/corp.bnpparibasbank.ru

Have you requested a review from other sources?

No response

Do you have a screenshot?

No response

Additional Information or Context

No response

[g0d33p3rsec]

Someone else will need to address this issue, I'm not comfortable touching it due to the geopolitical conflict of interest and risk of legal jeopardy as a U.S. citizen.

[spirillen]

And I'm not touching it for the same reason as neighbor to Sweden, Finland, Germany ETC as I lives next to the Baltic Sea, And I do not support warmongers, or any other country that keeps attacking peaceful countries, Ukraine, Finland, Estonia etc.

EU also have an 100% war embargo against Russia, So it is illegal for anyone at this project to touch this issue. with exception for people living in South Africa, who stands by and training military with Putin.

[R4inbowD4sh]

Understanding and respecting the USA and EU "embargo" regulations against Russia is crucial.
However, addressing this false positive detection is essential to ensure accurate threat intelligence and avoid any negative impact on legitimate services.
Phishing Database is now one of the only VirusTotal vendors to classify the site as "Phishing". Other vendors, including US-based ones like Forcepoint, have corrected their classification and marked the site as "Clean".

[phishing-database-bot]

Verification Required

@R4inbowD4sh, thank you for submitting a false positive report! To help us verify your ownership of the affected domain(s), please complete the following steps:

1. Set a DNS TXT record for the domain(s) listed in this issue with the following details:

   • Record Name: _phishingdb
   • Record Value: antiphish-d1e8b513b127ed59087e0d08ec402eda9c48550c

   Your Verification ID: antiphish-d1e8b513b127ed59087e0d08ec402eda9c48550c

2. Wait for DNS propagation (this may take a few minutes to a few hours).

3. Reply to this issue once the TXT record has been set.

Important Notes

• Verification does not guarantee whitelisting. The Phishing.Database team will review your report after verifying ownership, but the decision to whitelist depends on further investigation and analysis.
• If the record cannot be set or you need alternative methods of verification, please contact us at [email protected] - preferably from the domain's official email address.

How to Check the TXT Record ?

You can verify that the TXT record is properly set using:

• Online tools like Google's Dig Tool or MXToolBox TXT Lookup.
• The command line:

  dig TXT example.com
  

Thank you for your cooperation! We will address your issue as soon as possible after verification.

The Phishing.Database Project Team.

[funilrys]

@R4inbowD4sh, please comply with the comment above.

Thank your for your patience.

[mitchellkrogza]

@funilrys personal request received all domains check out okay for me