Home

Saving logo.png deemed "unsafe" by EdgeDev ???

%3CLINGO-SUB%20id%3D%22lingo-sub-814165%22%20slang%3D%22en-US%22%3ESaving%20logo.png%20deemed%20%22unsafe%22%20by%20EdgeDev%20%3F%3F%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-814165%22%20slang%3D%22en-US%22%3E%3CP%3EI%20understand%20the%20important%20of%20the%20filter%2C%20but...I'm%20unsure%20why%20it%20would%20block%20an%20image%20with%20a%20.png%20extension.%20See%20the%20URL%20below%2C%20right%20click%20and%20save%20as%20and%20you'll%20see.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22http%3A%2F%2Fwww.likeaboss.one%2Fwp-content%2Fthemes%2Flab%2Fassets%2Fimages%2Flogo.png%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttp%3A%2F%2Fwww.likeaboss.one%2Fwp-content%2Fthemes%2Flab%2Fassets%2Fimages%2Flogo.png%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAny%20thoughts%20or%20insights%20into%20why%20a%20simple%20.png%20is%20deemed%20unsafe%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EEdit%3A%20This%20is%20using%20Dev%20%22%3CSPAN%3EVersion%2078.0.244.0%20(Official%20build)%20dev%20(64-bit)%22%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-814548%22%20slang%3D%22en-US%22%3ERe%3A%20Saving%20logo.png%20deemed%20%22unsafe%22%20by%20EdgeDev%20%3F%3F%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-814548%22%20slang%3D%22en-US%22%3EHappened%20to%20me%20once%20or%20twice%20when%20I%20was%20trying%20to%20download%20an%20image%20from%20a%20random%20site%20for%20the%20first%20time%20on%20Canary.%3CBR%20%2F%3EI%20don't%20know%20why%20it's%20happening%20but%20I%20do%20know%20that%20it's%20pretty%20much%20possible%20to%20include%20codes%2Fmalware%20inside%20an%20image%20file%2C%20without%20corrupting%20the%20image%20itself.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-815101%22%20slang%3D%22en-US%22%3ERe%3A%20Saving%20logo.png%20deemed%20%22unsafe%22%20by%20EdgeDev%20%3F%3F%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-815101%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F310193%22%20target%3D%22_blank%22%3E%40HotCakeX%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EYeah%2C%20it%20is%20possible.%20But%20I'm%20curious%20if%20it%20flags%20every%20single%20PNG%3F%20The%20same%20can%20happen%20to%20JPG's%20(and%20maybe%20other%20image%20file%20types%3F%3F)%20but%20I%20don't%20see%20them%20getting%20flagged.%20Just%20kind%20of%20strange%20how%20they%20determine%20which%20ones%20to%20flag%20and%20which%20ones%20not%20to.%20Maybe%20an%20MS%20Rep%20can%20help%20us%20understand%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ELink%20to%20Cisco%20article%20explaining%20how%20malicious%20code%20can%20be%20inserted%20in%20PNG.%20Really%2C%20really%20interesting%20read%2C%20for%20sure.%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fblogs.cisco.com%2Fsecurity%2Ftalos%2Fmalicious-pngs%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fblogs.cisco.com%2Fsecurity%2Ftalos%2Fmalicious-pngs%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ELink%20on%20how%20the%20same%20can%20be%20inserted%20into%20JPG%3A%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fwww.bullguard.com%2Fblog%2F2018%2F01%2Fjpeg-files-and-malware%22%20target%3D%22_self%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fwww.bullguard.com%2Fblog%2F2018%2F01%2Fjpeg-files-and-malware%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-815203%22%20slang%3D%22en-US%22%3ERe%3A%20Saving%20logo.png%20deemed%20%22unsafe%22%20by%20EdgeDev%20%3F%3F%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-815203%22%20slang%3D%22en-US%22%3ENo%20it%20doesn't%20flag%20every%20single%20PNG.%3CBR%20%2F%3EFor%20JPEG%2C%20I%20found%20a%20small%20tool%3A%20%3CA%20href%3D%22http%3A%2F%2Fwww.filefriend.net%2Findex.html%23FileFriend%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttp%3A%2F%2Fwww.filefriend.net%2Findex.html%23FileFriend%3C%2FA%3E%3C%2FLINGO-BODY%3E
ArkansasBen77
Contributor

I understand the important of the filter, but...I'm unsure why it would block an image with a .png extension. See the URL below, right click and save as and you'll see.

 

http://www.likeaboss.one/wp-content/themes/lab/assets/images/logo.png

 

Any thoughts or insights into why a simple .png is deemed unsafe?

 

Edit: This is using Dev "Version 78.0.244.0 (Official build) dev (64-bit)"

3 Replies
Happened to me once or twice when I was trying to download an image from a random site for the first time on Canary.
I don't know why it's happening but I do know that it's pretty much possible to include codes/malware inside an image file, without corrupting the image itself.

@HotCakeX 

 

Yeah, it is possible. But I'm curious if it flags every single PNG? The same can happen to JPG's (and maybe other image file types??) but I don't see them getting flagged. Just kind of strange how they determine which ones to flag and which ones not to. Maybe an MS Rep can help us understand?

 

Link to Cisco article explaining how malicious code can be inserted in PNG. Really, really interesting read, for sure. https://blogs.cisco.com/security/talos/malicious-pngs

 

Link on how the same can be inserted into JPG: https://www.bullguard.com/blog/2018/01/jpeg-files-and-malware

No it doesn't flag every single PNG.
For JPEG, I found a small tool: http://www.filefriend.net/index.html#FileFriend
Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
48 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
30 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies