Giant black-hat SEO campaign funnels victims to scareware sites
Wednesday, November 18, 2009
Security researchers say that cyber criminals have conducted a large-scale campaign to influence Google results, pushing malware-spreading sites higher on the list and dropping legitimate results to the bottom.
Online security researcher Cyveillance, in a blog post from earlier this week, says that the black-hat SEO perpetrators posted masses of blog posts on free services, blank but for a picture, and carefully optimized to appear at the top of numerous esoteric Google search queries.
These "lure" websites, if accessed, redirect users first to what Cyveillance describes as a "middleman" site - active long enough to perform redirects, but not long enough to be catalogued as malicious - and then on to the malicious website itself, which performs a now-standard scareware attack on the victim's PC.
The exploit, which is only present on certain outdated versions of server software, suggests that it can be blocked by the use of fully patched and up-to-date programs. This exploit is not the only one driving traffic to scareware sites, as recent malvertising and spam attacks have also showed.
Related News:
Scareware stands as biggest threat to web security in 2010 - 3.10.2010
McAfee recently announced the development of Consumer Threat Alert, a program that users can sign up for to be alerted of threats spreading throughout the web. The first such threat that McAfee plans to address is scareware.
Mariposa botnet found on new Vodafone smartphone - 3.10.2010
A newly purchased HTC Magic, distributed by Vodafone, was found to have the Mariposa botnet strain on it. The discovery was made by a worker at Panda Security, who plugged her phone into her computer, where her antivirus software reported the presence of the malicious software, the company said.
Twitter gets proactive with users web security - 3.10.2010
Twitter, the popular social networking site, recently reported that it has implemented a plan to scan all links posted on the website as they are submitted by users. The measure is directly aimed at eliminating the threat of phishing attacks on its members.
WhitePages squashes ad networks after finding malware - 3.10.2010
A representative from the Senate Committee on Environment and Public Works told CNet on Tuesday that WhitePages.com is under investigation after a malware strain found on its computer was traced by government IT personnel back to the popular directory website.
IE8 best in web security - 3.9.2010
Microsoft's latest Internet Explorer update, IE8 provides users with the best overall malware protection, according to the a recently released study from NSS Labs.
|
