Hi guys, checking the hashes (SHA256) for the file downloaded from the homepage and the one downloaded from the /changes page, it seems like they are not the same even though they should be for the same version of GlassWire (3.4.694). Any reason for that?
TO be honest its insane they haven’t gone way out of their way to address this or at the very least give some info on what’s going on. The fact they don’t even reply is a joke.
The version which is available to download from the main page is patched with utm tags. The original installer is available at the [change list page ]and its hash is equal to the one we publish.
Can’t post the link so just search this forum for “Glasswire install file not digitally signed and hash doesn’t match”
Im assuming glassware isn’t affiliated with the company. Just so I understand the company feels that I should be ok with the fact the installer I get doesn’t match the hash you have posted? Even though you explain the importance of verifying on your site? Also that same file when uploaded it to virus total it’s flagged and a 2 sandboxes as well report it as malicious. What are we talking about here? How hard is it to update your hases listed?
My issue isnt finding the correct installer its, why is this company providing download links that aren’t of hashed file and why are those files associated fairly closely with malware. If you go to glasswires site the first thing they show you is
Concerned about your network’s security, monitoring your computer connections, and protecting your privacy?
and yet here we are.
Also why would UTM tags have any effect on the hash of the file?
Hi @JOSHM,
as correctly pointed out, the only difference in versions is the UTM parameters we’re using.
Not sure about what malware you’ve seen but we’d be extremely happy to investigate the subject further.
We indeed are keen on security and privacy, and every little contribution will help improve our offer.
Would you mind reaching out with more details to help@glasswire.com, so we can dig deeper in the topic?
Thanks,
Andrea