Security issue due to probable human error

[Elementari]

Prerequisites

• I verified that this is not a filter list issue. Report any issues with filter lists or broken website functionality in the uAssets issue tracker.
• This is NOT a YouTube, Facebook or Twitch report. These sites MUST be reported by clicking their respective links.
• This is not a support issue or a question. For support, questions, or help, visit /r/uBlockOrigin.
• I performed a cursory search of the issue tracker to avoid opening a duplicate issue.
• The issue is not present after disabling uBO in the browser.
• I checked the documentation to understand that the issue I am reporting is not normal behavior.

I tried to reproduce the issue when...

• uBO is the only extension.
• uBO uses default lists and settings.
• using a new, unmodified browser profile.

Description

Human error poses one of the greatest risks in security, in particular humans overriding/ignoring (semi-)automated warnings/blockings.

uBlockOrigin serves both
(1) ad blocking/tracker blocking/affiliate links blocking, and
(2) blocking of malware/phishing/etc.

The threat level of these two areas of functionality is vastly different.

Users might encoutner affiliate links frequently, and routine click the blue "Proceed" button to move on to the page of interest where they may want to purchase an item. This conditions people to automatically click the blue button.

A malware blocking list warning looks almost identical. There is also a blue button, and the information about the filter list is also rather far from away from the button.

A small font / zoom level may contribute to the problem. Users are likely to set a small zoom level because it also affects the uBlock settings website where there is reason to zoom out to have an overview.

I would like to suggest that users can configure filter lists to display one out of two templates - one being blue, and one being red. You may also consider an orange colored filter to give one more option.

Filter lists should define which of these three color schemes is to be displayed. The red scheme should have a layout that is noticeably different from the other ones - not just a red button, and it could add a second layer by requesting the user to confirm twice ("are you sure").

Moreover, I believe users should be informed in a central position what happens when a page is listed on more than one filter lists. If it is listed on an ad list and a malware list, it should be made clear that the malware warning will take precedence, or at the very least be displayed at some point. ("If a website is listed on more than one filter list, ...")

A specific URL where the issue occurs.

I am not going to post a malware site here, therefore:
https://google.com

Steps to Reproduce

1. condition a friend to click "proceed" 100 times, researching products they may want to purchase.
2. For the 101. page present them a malware site and watch them click "proceed" and catch a drive-by download etc.

Expected behavior

A proper warning for malware filter lists.

Actual behavior

Hardly and difference between affiliate links and badware/phishing sites.

uBO version

1.16.0

Browser name and version

FIrefox for Mac 132.0.1; any browser

Operating System and version

MacOS Sonoma 14.7.1

[MasterKia]

I believe users should be informed in a central position what happens when a page is listed on more than one filter lists. If it is listed on an ad list and a malware list, it should be made clear that the malware warning will take precedence, or at the very least be displayed at some point. ("If a website is listed on more than one filter list, ...")

#2476