Video of Bitdefender's Excellent Anti-Phishing

The professional team at BestAntivirus.Reviews conducted a test to discern how well Bitdefender's phishing protection features fare.

The test we carried out checks how well Bitdefender handles protection when a user tries to access phishing URLs in his/her browser.

Let's have a look at how many malicious sites Bitdefender managed to pick up on.

What are Phishing Attacks?

Phishing attacks attain personal information of unsuspecting users; this information includes login details, passwords of any online service like a mailbox, online banking services, and PayPal.

These attacks can even go as far as stealing the identity of a person if a social security number is shared on a page that tries to attain details.

All the cyber criminals need is to create a page that looks like the PayPal login page and it's as simple as that - your money can be stolen.

The most common way a phishing attack is carried out is in the form of an email which gets the victim to visit the false page, link, or website. The page will look like the legitimate website but the URL and address bar indicate that something is fishy!

Tips to Detect Phishing Attempts

These are some things to be aware of in order to avoid becoming the victim of a phishing attack:

  1. Some phishing sites try to steal the ID of some type of service, which means the URL will have some kind of grammar mistake or extra letters and words.
     
  2. The URL will be completely mismatched to what the landing page says. For example, a Yahoo account or mail when the URL is clearly not yahoo.com.
     
  3. Some phishing sites pretend to be an excel spreadsheet with the request to log into Microsoft office. The issue is that this excel is in the browser, it's not a document, it's a php file, and the domain is suspicious. If you enter your details you can lose your Microsoft office license.
     
  4. Bank impersonating sites are one of the most common phishing attack sites.
     
  5. A fake PayPal login site is also very popular but the URL indicates that it isn't PayPal.

Note: A phishing attack is not always a domain or website that you don't recognize. Some legitimate websites can get hacked and injected with phishing pages. You need to make sure the login page corresponds with the website you want to be on!

Steps Before the Test

I will test how many phishing threats out of 100 Bitdefender blocks and how many make it through.

First things first, I go to the Bitdefender interface and click on modules and then web protection to ensure that phishing protection is on. This setting can be turned on and off but it is turned on by default when Bitdefender is installed.

I then need to update Bitdefender's definitions to make sure they are up to date and can handle the new threats. The phishing URLs I will use are fresh so I need the antivirus software to be updated to ensure the proper results.

The update can take a few seconds and once that it done, I can start the test.

Test Results

So, I start off with a quick example and smaller sample to test it out.

I take the text file with 100 suspected URLs which were reported and then I scrape the list to test it.

The objective is to take the URLs and open them up in the Chrome browser to see how well Bitdefender handles this task.

I get started with 10 URLs and place them in the Google Chrome extension called Open URLs and click Open All in order to open all the URLs quickly and in separate tabs. 

Bitdefender blocked most of the URLs, and how I know is that a warning message appears telling me this link is a phishing attempt.

There are a few irrelevant pages that make it through that another person could have removed or that the backend of the website removed: these are not phishing sites and so I close them.

The URL that did get through looks like a Swedish Internet banking site but it isn't. I know this because the domain is not legitimate; it is just a random domain to host a page similar to the login page for the bank in order for victims to enter financial details and lose money.

If you click the profile settings on the interface and then events, you can see a log of all the URLs Bitdefender managed to detect and prevent from phishing your details.

Now for the real test:

I take all the 100 URLs and open all of them with the button Open All that I mentioned right above.

It can take a few minutes to load, after which I go over them, and remove the URLs that are actually blocked and removed as well as the ones that are not phishing pages anymore but are not blocked by Bitdefender, such as 404 and 403 error pages.

Once I reviewed all the tabs, I go over them and close the ones that are blocked successfully.

I am left with the threats that manage to escape Bitdefender's front line defense shield.

All in all, out of 100, Bitdefender managed to block 90. This means 10 phishing sites made it through giving Bitdefender a score of 90% for real-time phishing protection.

Conclusion

Bitdefender proves to have excellent anti-phishing protection!

You need to remember that there are new threats and web pages added, emerging, and reported every minute. 

The fact that Bitdefender can block 90% of very fresh threats is extremely good.

Bitdefender's excellent anti-phishing defense combined with common sense and awareness of what to look out for, as listed under the tips section, will keep you safe from any phishing attacks.

So be aware, stay safe, and visit our site for more reviews and any questions you might have!

OUR PICK

Total Security 2017

GET COUPON
Expires Tomorrow

Ami Zivov

A cyber-security expert with many years of experience in the field. Ami does the majority of our hands-on testing, he writes and contributes to our antivirus reviews, and he leads the innovation for improving our readers’ experience on the site.

Logo
Best Antivirus Reviews

JOIN OUR MAILING LIST

We promise to only send really good deals and important updates. No spam.