Steemed Phish v0.0.23: revealing cloaked blacklisted URLs

Bug Fixes

<ul> <li>in v0.0.17, fixed a bug where the plugin was conflicting with the login button on Steemit.com <h3>New Features since v0.0.16 <ul> <li>some scammers are hiding their malicious links by cloaking them with URL shortening services. This makes it less easy to spot them. <code>Steemed Phish<span> now uses <a href="http://expandurl.com" target="_blank" rel="noreferrer noopener" title="This link will take you away from hive.blog" class="external_link">http://expandurl.com to expand URLs and run them through the blacklist check <li><span>more sites have been added to the blacklist with the addition of blacklisted sites from <a href="/trending/steemcleaners"> #SteemCleaners <li><code>Steemed Phish won't show the external warning bubble on friendly websites <li>If <code>Steemed Phish can't find a match neither in the whitelist or the blacklist, it will try to find a pattern in the URL that might indicate a suspicious link <li>The blacklist and whitelist are now hosted outside of the extension so it is easier to update them without republishing the extension <p dir="auto">Describe briefly and add screenshots/recordings if applicable. <ul> <li>How did you implement it/them?<br /> Link to relevant lines in the code on GitHub and explain briefly what you added/changed. <h3>Reminder of what <code>Steemed Phish is <p dir="auto"><img src="https://images.hive.blog/768x0/https://cdn.utopian.io/posts/bcea2da3a4fca9da041c244a8bc9b6400ae5Screen_Shot_2018-03-30_at_8.52.10_am.jpg" alt="Screen Shot 2018-03-30 at 8.52.10 am.jpg" srcset="https://images.hive.blog/768x0/https://cdn.utopian.io/posts/bcea2da3a4fca9da041c244a8bc9b6400ae5Screen_Shot_2018-03-30_at_8.52.10_am.jpg 1x, https://images.hive.blog/1536x0/https://cdn.utopian.io/posts/bcea2da3a4fca9da041c244a8bc9b6400ae5Screen_Shot_2018-03-30_at_8.52.10_am.jpg 2x" /> <p dir="auto"><code>Steemed Phish is a Chrome extension that offers protection against Steemit.com phishing clones <h4>Features <h5>Changing icon color based on white/blacklist <p dir="auto">This extension will validate Steemit related websites by changing its icon color: <ul> <li>red is for blacklisted sites <li>green is for recognised friendly sites <li>grey is for unrecognised sites <h5>Whitelist and blacklist <p dir="auto"><code>Steemed Phish does not rely solely on these list as anything not listed won't be protected. Blacklist and whitelist are hard to maintain but adding them helps widening the protection coverage. <p dir="auto">When a site is neither whitelisted or blacklisted, <code>Steemed Phish will try to check the URL structure to find known patterns and flag a link as supsicious by coloring it in pink. <p dir="auto">There are currently 19 blacklisted websites and 31 whitelisted websites. <h5>Phishing Alerts <p dir="auto">If a user lands on a phishing website, <code>Steemed Phish will display two types of alerts: <ul> <li>a dialog that shows up even if the page was loaded in a tab in the background <li>a full page alert, that covers the whole phishing page and offers a link to go back to Steemit.com. The full page alert also reminds the user of not using their Steemit Keys on unknown websites and keep their password (Owner Key) safe. <h5>Expand shorten URL <p dir="auto">Some links are shortened using services such as bit.ly, this prevents people from easily analysing the URL of the link. <code>Steemed Phish uses a link expanding API to determine the destination URL of a link and then compare it again against the white/blacklist logic above. <h5>Making external links more visible <p dir="auto">Ideally, a user should be more careful on links they are clicking on by always paying attention to the URL of an anchor. But this is easier said than done and even the most experienced user can let down their guard sometimes and get tricked by the scammers. <p dir="auto">Recently, Steemit.com, has added a feature that marks external links with a grey icon on the right of each links. <code>Steemed Phish will make that icon more obvious by coloring it in purple. On top of that, it will make a bubble appear next to the mouse cursor with a text explaining the fact that clicking on the link with leads you away so don't use your password. This bubble won't show up on friendly (whitelisted) websites <h5>Support lazy loading <p dir="auto">The extension works even if the links are inserted into the page after page load (Ajax), for example: <ol> <li>The link was in a comment that was hidden due to low rating and I then revealed it. <li>The link is in a comment low in a popular page. The comment was not loaded at first but only when you scroll down <p dir="auto">In both cases, the first time the page loads, the comment and the link is not loaded and displayed. <code>Steemed Phish still works in these cases. <h4>Roadmap and potential ideas <ul> <li>make a bot that browses steemit for reports and extract URLs to be added to the blacklist <li><span>make a bot that follows another bot (<a href="/@guard">@guard) and listens for its downvotes and update the blacklist accordingly <li><span>monitor the <a href="https://steem.chat/channel/steemitabuse" target="_blank" rel="noreferrer noopener" title="This link will take you away from hive.blog" class="external_link">https://steem.chat/channel/steemitabuse channel for more URls to be added to the blacklist <li><span>If Steem Guard project goes live, use its API to update the blacklist: <a href="https://steemit.com/steem/@hernandev/proposal-steemguard-phishing-and-scam-protection-tools" target="_blank" rel="noreferrer noopener" title="This link will take you away from hive.blog" class="external_link">https://steemit.com/steem/@hernandev/proposal-steemguard-phishing-and-scam-protection-tools(edited) <h4>Download the extension <p dir="auto"><span><a href="https://chrome.google.com/webstore/detail/steemed-phish/eiaigalhddmmpdnehcigmlmgllomljgj" target="_blank" rel="noreferrer noopener" title="This link will take you away from hive.blog" class="external_link">https://chrome.google.com/webstore/detail/steemed-phish/eiaigalhddmmpdnehcigmlmgllomljgj <h4>I'm a Steem Witness <p dir="auto">If you like what I do for the Steem community, please consider me when choosing one of your 30 witnesses to vote for. <p dir="auto"><center><a href="https://steemit.com/witness-category/@quochuy/new-steem-witness-announcement-greetings-from-quochuy" target="_blank" rel="noreferrer noopener" title="This link will take you away from hive.blog" class="external_link"><img src="https://images.hive.blog/768x0/https://steemitimages.com/DQmRiULphBVQNFQ7WDPLQE9SkTeHwcZ1tnd29uaD4MPT3Y1/IMG_2460.PNG" alt="@quochuy Steem Witness" srcset="https://images.hive.blog/768x0/https://steemitimages.com/DQmRiULphBVQNFQ7WDPLQE9SkTeHwcZ1tnd29uaD4MPT3Y1/IMG_2460.PNG 1x, https://images.hive.blog/1536x0/https://steemitimages.com/DQmRiULphBVQNFQ7WDPLQE9SkTeHwcZ1tnd29uaD4MPT3Y1/IMG_2460.PNG 2x" /><br /> <sup><a href="https://steemit.com/witness-category/@quochuy/new-steem-witness-announcement-greetings-from-quochuy" target="_blank" rel="noreferrer noopener" title="This link will take you away from hive.blog" class="external_link">Vote for your 30 witnesses <p dir="auto"><a href="https://steemconnect.com/sign/account-witness-vote?witness=quochuy&approve=1" target="_blank" rel="noreferrer noopener" title="This link will take you away from hive.blog" class="external_link">Support me by voting for my witness via SteemConnect<br /> <p dir="auto"><br /><hr /><em>Posted on <a href="https://utopian.io/utopian-io/@quochuy/steemed-phish-v0-0-23-revealing-cloaked-blacklisted-urls" target="_blank" rel="noreferrer noopener" title="This link will take you away from hive.blog" class="external_link">Utopian.io - Rewarding Open Source Contributors<hr /> <p>