Jump to content

Click to Massive Malware Attacks

Humpty

By Humpty
in Windows Security

 Share

Recommended Posts

Humpty

Humpty

Posted
Posted
A large-scale, coordinated campaign to steer users toward malware-spewing Web sites from Google search results is under way, security researchers said Tuesday.

 

Users searching Google with any of hundreds of legitimate phrases -- from the technical "how to cisco router vpn dial in" to the heart-tugging "how to teach a dog to play fetch" -- will see links near the top of the results listings that lead directly to malicious sites hosting a mountain of malware. "This is huge," said Alex Eckelberry, Sunbelt Software's CEO. "So far we've found 27 different domains, each with up to 1,499 [malicious] pages. That's 40,000 possible pages."

PC World Article

Link to comment
Share on other sites
Sockdown

Sockdown

Posted
Posted

Wow! Very interesting. Thanx for the info Humpty. Gonna be careful now and verify the url before pressing the link

public void dammit() {

damn.cmon(forYou);

damn.delete(You);

System.out.println("Mwuhahahaha");

}

Link to comment
Share on other sites
Humpty

Humpty

Posted
  • Author
Posted
Wouldn't McAfee SiteAdvisor help with this?

Don't know but have read that Google are on to it and have deleted most of those sites.

Google nixes malware attack

 

The Saga May Continue

Another round of bogus malware touting sites may be headed toward Google’s search results again, according to the researcher tracking the issue.

 

Earlier today, Sunbelt Software reported that Google had eradicated the malware scourge hampering search results. That move had apparently closed the loop on a rash of malware in Google’s results from Monday and Tuesday.

 

In an update, however, Sunbelt argues that there are indications that another round of sites are being registered with the .cn domain. The catch this go around: There are two types of fake sites being registered–and that could mean there are two groups involved.

 

It appears the first round of sites come from the same bunch from the prior attack. Now there’s another group involved. Check out this screen from Sunbelt (there are more on the Sunbelt blog).

Link to comment
Share on other sites
JDPower

JDPower

Posted
Posted
Wouldn't McAfee SiteAdvisor help with this?

It would help as I doubt these sites would be green marked sites. I've added a filter to Customize Google on my system to hide these sites which seems to work (it doesn't block them but makes the filtered results smaller and faded). It's not perfect but makes any .cn results obvious and easier to avoid. For anyone that's interested the filter I've used is: http://*.cn/*

 

And thanks for the updates on this one Humpty.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.

  I accept