Web Security News

Google provides malware detection tools for webmasters

Wednesday, October 14, 2009

Google announced Monday that it has added malware details to its Webmaster Tools to help website administrators locate and remove malicious code.

Google's search engine and web browsers including Firefox, Chrome and Safari automatically scan websites for malware, which provides web users with a warning that the page may be infected before directing them to the site.

The company said on its security blog that the Webmaster Tools malware details feature will help site administrators get their websites cleaned up of malware in malicious HTML tags, Javascript and Flash files that may have been injected into the site by attackers.

"While it is important to protect users, we also know that most of these sites are not intentionally distributing malware," Google's Lucas Ballard explained on the blog. "We understand the frustration of webmasters whose sites have been compromised without their knowledge and who discover that their site has been flagged."

Webmasters will see a list of their pages flagged for malware distribution and samples of the malicious content that Google's scanners encountered.

Cybercriminals frequently target legitimate websites for distribution of malware through attacks known as cross-site scripting (XSS) and SQL injection.

The Firefox web browser will soon feature a technology called Content Security Policy which the company said would block XSS hacker attacks from websites injected with malicious code.ADNFCR-1765-ID-19408932-ADNFCR

Related News:

Network security concerns prompt postponement of Google phones in China - 1.20.2010
The Wall Street Journal reports that Google has decided to indefinitely postpone the launch of two of its Android smartphones to the Chinese market, which pundits have taken as further proof of the growing rift between the search giant and the Chinese government.

Cloud network security concerns prompt Microsoft to propose new laws - 1.20.2010
Microsoft's general counsel, Brad Smith, told an audience at the Brookings Institution today that the government should step in to regulate the emerging cloud computing industry and help protect businesses and consumers from fraud and abuse.

Network security experts unmask command servers behind Google attack - 1.19.2010
Researchers at VeriSign's iDefense lab have published a report claiming that the Chinese government was responsible for the recent large-scale cyber attacks that targeted Google and other U.S. companies.

Out-of-band IE patch to fix widespread vulnerability - 1.19.2010
Microsoft will issue a patch to its Internet Explorer browser software before its next scheduled update, intended to fix the flaw that enabled hackers to launch a damaging cyber attack on numerous U.S. companies.

France and Germany warn citizens to avoid using Internet Explorer - 1.18.2010
The governments of both France and Germany have issued official warnings to their citizenry, saying that, until Microsoft releases a patch for the widely-used Internet Explorer web browser, it is a threat to network security and should not be used.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now