As cybersecurity practitioners or regular internet users we often come across malicious websites that should be responsibly reported. Notifying security vendors of such cases can help protect not just ourselves but also others from phishing, malware, and other threats.
Before reporting to any services it is worth scanning the link with VirusTotal and checking for any existing detections: https://www.virustotal.com/
Here is a look at the top services where you can report malicious websites which was curated by ThioJoe on YouTube — check out his video to learn more about how you can use these services.
Sites where you can report malicious links:
Report to the domain registrar (if appropriate) by looking up their Abuse contact in whois.
Google SafeBrowsing: https://safebrowsing.google.com/safebrowsing/report_phish/
Microsoft: https://www.microsoft.com/en-us/wdsi/support/report-unsafe-site
- Use Microsoft 365 Defender portal for a more comprehensive submission form, if you have access.
Fortiguard: https://www.fortiguard.com/webfilter
BrightCloud: https://www.brightcloud.com/tools/url-ip-lookup.php
Netcraft: https://report.netcraft.com/report
Palo Alto Networks: https://urlfiltering.paloaltonetworks.com/
Trend Micro: https://global.sitesafety.trendmicro.com/index.php
BitDefender: https://www.bitdefender.com/consumer/support/answer/29358/
McAfee: https://sitelookup.mcafee.com/
Forcepoint: https://csi.forcepoint.com/
Symantec: https://sitereview.symantec.com/#/
Spam404: https://www.spam404.com/report.html
Kaspersky: https://opentip.kaspersky.com/
Cisco Talos: https://talosintelligence.com/reputation_center
By reporting malicious websites to these services, you help create a safer internet environment for everyone. Let’s continue to work together to combat online threats and work towards a more secure, trustworthy internet experience.