OPEN_SOURCE ↗
HN · HACKER_NEWS// 37d agoBENCHMARK RESULT
Norn Labs: Safe Browsing misses 84% phishing
Norn Labs’ February 2026 Huginn report claims Google Safe Browsing flagged only 41 of 254 confirmed phishing URLs at scan time, while its own Muninn system detected far more through layered scanning. The post argues blocklist-based protection is too slow for short-lived phishing campaigns hosted on trusted platforms.
// ANALYSIS
This is a strong data point on real-time phishing detection limits, but it is still vendor-run benchmarking that needs independent replication.
- –The report’s core claim (83.9% missed) is specific and transparent about sample size, which makes it notable.
- –Norn positions Muninn as a two-layer model (automatic URL/heuristic scan plus deeper visual scan) rather than pure blocklist matching.
- –The biggest practical takeaway is attacker abuse of reputable hosts (for example site builders and cloud platforms) where domain-level blocking is ineffective.
- –Because the evaluation is produced by the tool vendor, developers and security teams should treat it as directional evidence, not definitive industry truth.
// TAGS
huginnmuninnphishingcybersecuritychrome-extension
DISCOVERED
37d ago
2026-03-05
PUBLISHED
37d ago
2026-03-05
RELEVANCE
8/ 10
AUTHOR
jdup7