According to Hacker news story at http://thehackernews.com/2017/04/unicode-Punycode-phishing-attack.html a lot of browsers are vulnerable to the fishing attack in Unicode domain names.
As Squid mimics the subject name and alternative names of certificates when HTTPS filtering is enabled the Unicode domain name of a fishing site is mimicked too. To block access to such sites it is recommended to add the following URL regex blocking to Admin UI / Web Safety / Filtering Rules / Block by UR.
This is a temporary measure until browsers are fixed. It may result into over blocking especially in countries that use the Unicode encoded domain names (China?)
The ubuntu.diladele.com used as repository for Squid custom build with HTTPS filtering support will be taken down in 30 days. This repo is based on (obsolete) tutorial for Ubuntu 14 LTS – https://docs.diladele.com/howtos/build_squid_ubuntu14/index.html
It is not used in any of the supported versions of Web Safety as we now use Ubuntu 16 LTS in our virtual appliance, based on build tutorial https://docs.diladele.com/howtos/build_squid_ubuntu16/index.html and online repository ubuntu16.diladele.com
Everyone is encouraged to move to the current stable version of Web Safety 4.9. See https://www.diladele.com/virtual_appliance.html
We try to also have ready to run Hyper-V virtual appliance on our site – and this is the first step. Please see the latest 5.0 build at http://packages.diladele.com/websafety/184.108.40.20652/va/ubuntu16-hyperv/websafety.zip
The vm was “exported” from Hyper-V manager running on Windows Server 2012 R2 (c64). If you have time – please see if the “import” of this appliance works in your Hyper-V based virtual infrastructure.
Report any errors/issues at firstname.lastname@example.org.