search

webtorrent / webtorrent-desktop

❤️ Streaming torrent app for Mac, Windows, and Linux
https://webtorrent.io/desktop
MIT License
9.69k stars 1k forks source link

Detection of false positive virus in WebTorrent Desktop download #2358

Closed andresgarcia0313 closed 10 months ago

andresgarcia0313 commented 1 year ago

Detection of false positive virus in WebTorrent Desktop download

Problem Description:

When downloading the WebTorrent application, some users have reported that their antivirus programs detect a supposed virus with the label "JTI/Suspect.196612!e3921e5c2119" according to McAfee. However, we believe this is a false positive, as the software in question does not exhibit any malicious behavior, and no evidence of harmful activity has been found.

Versions used:

The exact version of WebTorrent being used is 0.24.0, to identify the origin of the problem.

Problem to solve:

The problem we want to address is the erroneous detection of viruses by antivirus programs when downloading WebTorrent. Although we understand the importance of security programs, in this case, we believe a false positive is being generated, possibly related to a library being used, and this affects users' trust in the software.

Proposed solution:

We suggest investigating and analyzing in detail why some antivirus programs, particularly McAfee, are flagging the download of WebTorrent as a possible virus. Additionally, it is essential to communicate with the developers of McAfee to inform them about this situation and provide evidence that WebTorrent does not pose a real threat. Alternatively, modifying the code or the third-party library being used could also be considered.

El código fuente y el archivo compilado que he creado no contienen virus. Sin embargo, es importante destacar que la página web de descarga presenta una vulnerabilidad que permite a alguien agregar virus al instalador disponible en el sitio. A pesar de esto, al compilar el instalador y ejecutarlo, no se detectan virus al analizarlo con McAfee.

Thank you very much for your attention to this matter.

andresgarcia0313 commented 1 year ago

El código fuente y el archivo compilado que he creado no contienen virus. Sin embargo, es importante destacar que la página web de descarga presenta una vulnerabilidad que permite a alguien agregar virus al instalador disponible en el sitio. A pesar de esto, al compilar el instalador y ejecutarlo, no se detectan virus al analizarlo con McAfee.

github-actions[bot] commented 1 year ago

Is this still relevant? If so, what is blocking it? Is there anything you can do to help move it forward?

andresgarcia0313 commented 1 year ago

The source code and the compiled file that I have created do not contain viruses. However, it is important to note that the download web page contains a vulnerability that allows someone to add viruses to the installer available on the site. Despite this, when compiling the installer and running it, no viruses are detected when scanned with McAfee.

It has worked for me to install it from choco con choco install webtorrent I have not validated again if the web link has a virus I would recommend that you please upload it to the virustotal website to validate

github-actions[bot] commented 11 months ago

Is this still relevant? If so, what is blocking it? Is there anything you can do to help move it forward?