Google Sponsored Links - Open Door to Malware Site? - Andre Yee's Security Insider - ebizQ

February 10, 2008 Sign In | About ebizQ | Contact Us | Join ebizQ Gold Club

Andre Yee's Security Insider
An open dialogue about security and compliance for the enterprise.

« Another Privacy Exposure on the Web | Main | Staples to Start Recycling Program »

May 01, 2007
Google Sponsored Links - Open Door to Malware Site?

The Exploit Prevention Lab blog reports on how hackers are using Google sponsored links to infect machines with a variant of the MDAC exploit. Here's how it works -

Popular Google searches like "Better Business Bureau" will turn up a rogue link leading to a malicious site. In the case of "Better Business Bureau" search, the query actually turned up the rogue link as the #1 sponsored site. However, before taking you to the BBB site, it actually sends you to smarttrack.org which sounds innocuous enough...except that it's not.

Smarttrack.org uses a variant of the MDAC exploit to install a backdoor and a post-logger on your system. The postlogger targets the websites of top banks around the world with a phishing attack to entice online banking customers to unintentionally reveal vital information. What makes this both a clever and insidious use of Google links is that most browsers do not provide a preview address with Google sponsored links (the way they do with most other links).

And one other thing - Google suspended the accounts of the malicious sponsored links. Thought I should mention that. If you want to read the latest on this, here is a report with Google's response to this.

Posted by andreyee in Alerts/Warnings |Digg This|Add to del.icio.us

Trackback Pings

TrackBack URL for this entry:
http://www.ebizq.net/mt/mt-tb.cgi/1776

Comments Post a comment

Most Recent ebizQ Blog Entries

ADVERTISEMENT

RSS Subscription

Recent Posts

Privacy Problems with Social Networks
Implications of Salesforce Phishing Incident
Electronic Jihad?
Top 10 Most Vulnerable Apps for 2007
Adobe Fixes Vulnerability But Problems Persist in the Wild
Ann Coulter Hacked
Social Networking Versus Corporate Security
How Web 2.0 is Challenging Corporate Security
Identity Data Leaked from Mortgage Company
Is the iPhone Secure Enough For You?

Categories

Alerts/Warnings
Compliance
Industry Trends
Insider Attacks
IPS/Firewall Technology
M&A
Network Security
Odds and Ends
Privacy/Information Theft
Product Announcements
Spam & Spyware
web 2.0
web services security
Wireless Security

Archives

December 2007
November 2007
October 2007
September 2007
July 2007
June 2007
May 2007
April 2007
March 2007
February 2007
January 2007
December 2006
November 2006
October 2006
September 2006
August 2006
July 2006
June 2006
May 2006

Blog Roll

This Work

Accountability:The opinions expressed in this blog are solely representative of the blog's author, and not of ebizQ

Disclaimer:The opinions expressed in this blog are solely representative of the blog's author, and not of ebizQ.

free hit counter script

Subscribe to our Newsletters
ebizQ Weekly Gold Club Update Live Webinar Updates Updates from ebizQ Partners ebizQ SOA Update ebizQ BPM Update ebizQ Security Update ebizQ BI Update ebizQ Open Source Software Update Virtual Show Newsletter
Your E-mail Address:

BAM: The Killer App for CEP
Date: Feb 12, 2008
Time: 12:00 PM ET
(17:00 GMT)
I WANT TO ATTEND

Event Processing Market Pulse
Date: Feb 14, 2008
Time: 12:00 PM ET
(17:00 GMT)
I WANT TO ATTEND

Archived Webinars | Upcoming Webinars

Marketing Solutions | Feedback | About ebizQ | Unsubscribe | Privacy Policy | Site Map