Chrome is blocking wired.com

Often when this happens with a large site, it&#x27;s because of an malware-laden ad. Typically with a smaller site, it&#x27;s because the site was somehow hacked or didn&#x27;t stay fully up-to-date on security patches.<p>Added: Looks like it was an actual hack, not just a bad ad. The Wired folks will want to make sure there&#x27;s no more iframes from hxxp:&#x2F;&#x2F;zlu bob.org. Folks can use our free Fetch as Google tool to see what we see when we try to fetch a page. You can find out more about the Fetch as Google tool here: <a href="https://support.google.com/webmasters/answer/158587?hl=en" rel="nofollow">https:&#x2F;&#x2F;support.google.com&#x2F;webmasters&#x2F;answer&#x2F;158587?hl=en</a>

This happens to many small business sites.<p>If they leave their WordPress un-patched, or have a crappy plugin installed with security holes, or their FTP info is guessed, etc, hackers drop some malicious Javascript on their sites, and the next thing you know, their site cannot be accessed in Chrome, and usually Firefox as well. Depending on what services pick-up on the bad javascript.<p>For me, it usually takes a day(ish) from the time we are notified of the issue, update the sites, remove the malware, install webmaster tools from Google, submit and wait for the review to be unblocked.<p>On one hand, this is very frustrating, but on the other hand, many small businesses would have no idea their site had been hacked without it being blocked.<p>The only thing I&#x27;d like to see personally is if Google were somehow able to notify the domain registrant of the block via email so they find out right away, and not after a few weeks (or longer) in some cases. Some small business owners don&#x27;t check their sites very often. We like to monitor our client sites, but sometimes new clients come to us with these problems and have no idea how long they&#x27;ve been down.

Blocked for me, Ubuntu 13.10, Firefox 28.0.<p>The main page is not blocked but anything I click on is blocked.<p>Here is the Why page:<p>Safe Browsing Diagnostic page for wired.com&#x2F;2014&#x2F;04<p>What is the current listing status for wired.com&#x2F;2014&#x2F;04?<p><pre><code> Site is listed as suspicious - visiting this web site may harm your computer. </code></pre> What happened when Google visited this site?<p><pre><code> Of the 135 pages we tested on the site over the past 90 days, 0 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2014-04-05, and suspicious content was never found on this site within the past 90 days. This site was hosted on 12 network(s) including AS31377 (AKAMAI-BOS), AS701 (UUNET), AS12989 (HWNG). </code></pre> Has this site acted as an intermediary resulting in further distribution of malware?<p><pre><code> Over the past 90 days, wired.com&#x2F;2014&#x2F;04 did not appear to function as an intermediary for the infection of any sites. </code></pre> Has this site hosted malware?<p><pre><code> No, this site has not hosted malicious software over the past 90 days. </code></pre> How did this happen?<p><pre><code> In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message. </code></pre> Next steps:<p><pre><code> Return to the previous page. If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools. More information about the review process is available in Google&#x27;s Webmaster Help Center.</code></pre>

They had a &#x27;technical issue&#x27; earlier today it seems:<p>&quot;WIRED: @Freakonomicss @hoffin205 Yeah, we had a technical issue this morning, but our tech team fixed. Waiting for @googlechrome to clear us&quot;<p><a href="https://twitter.com/wired/status/452490353283588096" rel="nofollow">https:&#x2F;&#x2F;twitter.com&#x2F;wired&#x2F;status&#x2F;452490353283588096</a>

Weird: <a href="http://safebrowsing.clients.google.com/safebrowsing/diagnostic?site=http%3A%2F%2Fwww.wired.com%2Fplaybook%2Fwp-content%2Fuploads%2F2013%2F07%2Fsurf-shaper-w.jpg&amp;client=chromium&amp;hl=en-US" rel="nofollow">http:&#x2F;&#x2F;safebrowsing.clients.google.com&#x2F;safebrowsing&#x2F;diagnost...</a><p>The page essentially says &quot;We believe this page is suspicious, and we have no evidence to back up that claim.&quot;<p>EDIT: They must have updated it&#x2F; busted a cache. The page is now reporting some evidence.

It&#x27;s blocking in Safari too so I think it&#x27;s a MacOS diagnosis rather than a Chrome one perhaps? Or both browsers are detecting the same thing

This is almost always due to a malicious ad.

The message I got when I proceed is:<p>------- The website at www.wired.com contains elements from sites which appear to host malware – software that can hurt your computer or otherwise operate without your consent. Just visiting a site that contains malware can infect your computer.<p>Below is a list of all the unsafe elements for the page. Click on the Diagnostic link for more information on the thread for a specific element.<p>Malware <a href="http://www.wired.com/playbook/wp-content/uploads/2013/07/soccer_w.jpg" rel="nofollow">http:&#x2F;&#x2F;www.wired.com&#x2F;playbook&#x2F;wp-content&#x2F;uploads&#x2F;2013&#x2F;07&#x2F;soc...</a> Safe Browsing diagnostic page<p>Malware <a href="http://www.wired.com/playbook/wp-content/uploads/2013/06/bike-press-w.jpg" rel="nofollow">http:&#x2F;&#x2F;www.wired.com&#x2F;playbook&#x2F;wp-content&#x2F;uploads&#x2F;2013&#x2F;06&#x2F;bik...</a> Safe Browsing diagnostic page -------<p>I wonder what&#x27;s wrong with these two pictures?

I can reproduce on Chrome 33.0.1750.154 m on Windows 8. Screenshot: <a href="http://imgur.com/cUEZJYe" rel="nofollow">http:&#x2F;&#x2F;imgur.com&#x2F;cUEZJYe</a><p>The safe browsing diagnostic page shows no negative current or previous reports for wired.com despite describing it as suspicious:<p><a href="http://safebrowsing.clients.google.com/safebrowsing/diagnostic?site=http%3A%2F%2Fwww.wired.com&amp;client=googlechrome&amp;hl=en-US" rel="nofollow">http:&#x2F;&#x2F;safebrowsing.clients.google.com&#x2F;safebrowsing&#x2F;diagnost...</a><p>&gt; What is the current listing status for www.wired.com? This site is not currently listed as suspicious.<p>&gt; Has this site hosted malware? No, this site has not hosted malicious software over the past 90 days.

Any chance it&#x27;s related to this?<p><a href="http://www.incapsula.com/blog/world-largest-site-xss-ddos-zombies.html" rel="nofollow">http:&#x2F;&#x2F;www.incapsula.com&#x2F;blog&#x2F;world-largest-site-xss-ddos-zo...</a><p>Security company found a vulnerable Alexa Top 50 site where someone was able to inject XSS code in the comments section creating &quot;DDoS Zombies&quot; of the visitors.

Safari and Firefox are also blocking Wired.

I just tried to go there using Chrome on Ubuntu and I got a malware warning: &quot;Content from www.wired.com, a known malware distributor, has been inserted into this web page. Visiting this page now is very likely to infect your computer with malware.&quot;

Safari also -- not the home page but the articles. Showing up as phishing attack.

Sucuri shows wired.com as clean on all lists and not blocked by anyone: <a href="http://sitecheck3.sucuri.net/results/wired.com" rel="nofollow">http:&#x2F;&#x2F;sitecheck3.sucuri.net&#x2F;results&#x2F;wired.com</a>

Not on OSX (33.0.1750.152)

In my laptop (Win 7, Dell 1555):<p>Blocked in Chrome Version 33.0.1750.154 m<p>Not blocked in ie11, Firefox 20<p>In my Mobile (HTC One M7 4.4.2):<p>Neither blocked in Chrome(33.1) nor in the stock browser<p>Doesn&#x27;t Android Chrome support malware detection?

They had some technical issue this morning, but it&#x27;s supposedly fixed now. And they&#x27;re just waiting for Chrome to unflag them.

The &quot;more about&quot; link shows that there are no malicious codes detected, etc. Maybe someone is sending false warnings?

I&#x27;m a little confused how a webpage can infect a machine with malware?<p>Is this typically through Java Applets&#x2F;other plugins?

Works fine for me, Chrome 33.0.1750.152 on OSX

Does block for me OSX Version 33.0.1750.152

Not on iOS in either Chrome or Safari.

Definitely on Chromium 33.0.1750.152.

The block is lifted now. Supposedly.

Not in Android (?) Nexus 5.

Works ok on ubuntu..

Oh, and I was thinking Google were just disagreeing with somebody in Wired&#x27;s management on some personal viewpoint. Silly me!

Not on Chrome for Android. Yes on Chrome for Windows. However, it&#x27;s been years since wired.com has been relevant, so it won&#x27;t be missed.

I always thought that using the safe browsing feature is asking for trouble so it is disabled in all my browsers. So my browser doesn&#x27;t need to make an extra request to Mozilla&#x2F;Google&#x2F;etc every time I load a new website and the web is not censored if there is a technical issue

So when does robot slander&#x2F;libel suits begin? I&#x27;d be mighty ticked if google started labelling my sites as malware when they&#x27;re clearly not.

I am surprised why anyone is still using Chrome. Their debacle with remotely disabling extensions that are not from the Web Store should have spooked users enough.

I can&#x27;t believe on HN of all places people are using Chrome its malware-detecting-capabilities. Friendly reminder that EVERY REQUEST you make with it enabled, will be passed through Google its filters.<p>You should turn all Google networking activities in your browser off. By default, there are at least five or so enabled which will happily send every request you make to Google. Some services even go as far as logging every keystroke you make.

I&#x27;ve stopped using chrome for general browsing since this latest scandal.