Google Chrome only blocking a quarter of phishing websites, researchers claim

A new study by Which? said it found Google’s web browser was failing to block access to suspicious websites.

Adam Smith
Wednesday 25 May 2022 16:07
Google’s Chrome web browser is only preventing users from visiting around a quarter of suspicious sites that are liking part of phishing scams, Which? has claimed (PA)
Google’s Chrome web browser is only preventing users from visiting around a quarter of suspicious sites that are liking part of phishing scams, Which? has claimed (PA)

Google’s Chrome web browser is only preventing users from visiting around a quarter of suspicious sites that are likely to be part of phishing scams, Which? has claimed.

The consumer group said a study searching the web addresses of 800 newly discovered phishing sites in a web browser saw Chrome block only 28% when used on Windows and 25% on an Apple Mac computer.

Which? said it performed the same test across a number of other web browsers, with Mozilla’s Firefox performing the best by blocking access to 85% of sites when used on Windows and 78% on Mac – the best result on both platforms.

Phishing scams are those where criminals create messages that look genuine in order to trick consumers into clicking a link to a bogus website where viruses could be installed on their device, or having them hand over personal information which can be used to gain access to financial information or online bank accounts.

In response to the findings, a Google spokesman said: “This study’s methodology and findings demand scrutiny.

“For more than 10 years, Google has helped set the anti-phishing standard – and freely provided the underlying technology – for other browsers. Google and Mozilla often partner to improve the security of the web, and Firefox relies primarily on Google’s Safe Browsing API to block phishing – but the researchers indicated that Firefox provided significantly more phishing protection than Chrome.

“It’s highly unlikely that browsers using the same technology for phishing detection would differ meaningfully in the level of protection they offer, so we remain sceptical of this report’s findings.”

Phishing scams can come in the form of emails, text messages and direct messages on social media.

To help counter such scams, the UK’s National Cyber Security Centre (NCSC) advises people to consider carefully before clicking any link they are sent, unsolicited, by an organisation. It also encourages people to look for tell-tale signs including poor spelling or grammar, or a sense of urgency in the messaging to try to encourage a rash decision.

Security experts also warn that if an offer sounds too good to be true, it often is.

“It’s incredibly alarming to see that a huge company like Google is allowing the security of its users to be exposed in this way – a gift to fraudsters who are constantly trying to use phishing attacks as a launchpad for scams that can have a devastating impact on victims,” Which? computing editor Lisa Barber said.

“If you are worried about your safety online, remaining vigilant when clicking a link, installing a top-quality free or paid antivirus package, keeping your browser up to date and signing up to our free scams alerts email will all massively increase your protection from malicious websites.”

Additional reporting by Press Association

Register for free to continue reading

Registration is a free and easy way to support our truly independent journalism

By registering, you will also enjoy limited access to Premium articles, exclusive newsletters, commenting, and virtual events with our leading journalists

Please enter a valid email
Please enter a valid email
Must be at least 6 characters, include an upper and lower case character and a number
Must be at least 6 characters, include an upper and lower case character and a number
Must be at least 6 characters, include an upper and lower case character and a number
Please enter your first name
Special characters aren’t allowed
Please enter a name between 1 and 40 characters
Please enter your last name
Special characters aren’t allowed
Please enter a name between 1 and 40 characters
You must be over 18 years old to register
You must be over 18 years old to register
Opt-out-policy
You can opt-out at any time by signing in to your account to manage your preferences. Each email has a link to unsubscribe.

By clicking ‘Create my account’ you confirm that your data has been entered correctly and you have read and agree to our Terms of use, Cookie policy and Privacy notice.

This site is protected by reCAPTCHA and the Google Privacy policy and Terms of service apply.

Already have an account? sign in

By clicking ‘Register’ you confirm that your data has been entered correctly and you have read and agree to our Terms of use, Cookie policy and Privacy notice.

This site is protected by reCAPTCHA and the Google Privacy policy and Terms of service apply.

Register for free to continue reading

Registration is a free and easy way to support our truly independent journalism

By registering, you will also enjoy limited access to Premium articles, exclusive newsletters, commenting, and virtual events with our leading journalists

Already have an account? sign in

By clicking ‘Register’ you confirm that your data has been entered correctly and you have read and agree to our Terms of use, Cookie policy and Privacy notice.

This site is protected by reCAPTCHA and the Google Privacy policy and Terms of service apply.

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in