How does Anti-Phishing work in my ESET product?
- What is "phishing"?
- You receive the notification "Warning: Potential phishing threat" when attempting to visit a specific website or domain
- How to report or remove a phishing site from scanning
- How to enable/disable Anti-Phishing
Anti-Phishing technology protects you from attempts to acquire passwords, banking data and other sensitive information by fake websites masquerading as legitimate ones. When your computer attempts to access a URL, ESET compares it against our database of known phishing sites. If a match is found, the connection to the URL is terminated and a warning message is displayed. However, you have the option to proceed to the URL at your own risk or to report the URL to us as a potentially false positive warning.
The anti-phishing database is updated by ESET regularly (users’ computers receive data about new phishing threats every 20 minutes) and this database includes information from our partners as well.
ESET Smart Security, ESET Smart Security Premium, ESET Internet Security, and ESET NOD32 Antivirus provide Anti-Phishing protection that allows you to block web pages known to distribute phishing content. We strongly recommend that you leave Anti-Phishing enabled (Anti-Phishing is enabled by default).
Potential phishing attempt warning
When you access a phishing website, you will receive the following notification in your web browser. By clicking Ignore threat, or Proceed to the site in version 8 and earlier (click to view a screenshot), you can access the website without receiving a warning message.
It is not recommended to proceed to a website that has been identified as a potential phishing website.
Report a phishing website to ESET
Reporting potentially malicious websites to ESET contributes to the online security of other ESET users by alerting ESET security professionals about potentially harmful content that should be detected by ESET.
To report phishing/malicious websites to ESET for analysis, or to report safe websites to ESET for removal from the ESET Blacklist, visit the following ESET web pages:
Report a phishing site to ESET
A website that you know or suspect to be a phishing website is not detected by your ESET product. Content that you submit may be added to the ESET Blacklist if analysis shows that malicious content is being distributed from the web address you reported.
Report a false positive phishing site to ESET
A website that you know to be safe is detected as a threat. Content reported as a false positive will be re-visited by ESET security professionals and removed from the ESET Blacklist if it is shown to be safe.
Report a phishing website or false positive by email
Send reports of phishing websites to firstname.lastname@example.org. Please remember to use a descriptive subject and enclose as much information about the website as possible (for example the website that referred you there, how you heard about it, etc.).
Check your Anti-Phishing protection status
To check your Anti-Phishing protection status, follow the steps below:
Click Setup → Internet protection in the main product window.
If Anti-Phishing protection is enabled, the slider bar is green and Enabled will be displayed in the Anti-Phishing protection section.
If Anti-Phishing protection is not enabled, the slider bar is red and Disabled permanently or Paused will be displayed in the Anti-Phishing protection section. To re-enable Anti-Phishing protection, follow the steps below.
To test Anti-Phishing functionality, visit the following link (URL) in your web browser:
To see the activity of Anti-Phishing web and email protection, check Tools → Log files → Filtered websites. It will contains information with visited links (URLs) that were found.
Click Setup → Internet protection.
- Click the slider bar next to Anti-phishing protection.
Add websites to the Whitelist
The Whitelist is a list of websites that would normally be blocked by ESET, but are accessible because you allowed them. Potential phishing websites that have been whitelisted will expire from the whitelist after several hours by default.
To permanently allow access to a Potential phishing website without interruption from your ESET product, follow the steps below:
Press F5 on your keyboard to access Advanced setup.
- Click Web and Email → Web access protection, expand URL Address Management and then click Edit.
- Select List of addresses excluded from checking and then click Edit.
From the Edit list window, click Add and type the URL address. Click OK in each of the open windows to save your changes and exit Advanced setup.
You will no longer receive threat notifications from your ESET product when this URL is accessed.