Posted by: Troy Tate
browser security, drive-by attack, Google, information security, malicious software, malware, search results, software, software security
Well, that may not be news to you. However, there is a recent trend in malware propagation that uses Google as the portal to deliver payloads to visitors. Unsuspecting users go to Google and search for topics such as Patrick Swayze’s death or the controversy about Serena Williams cursing at the line judge in her recent US Open tennis match. When a user selects one of the Google search results and visits the page, malware is downloaded to the client computer since the referrer is Google. However, if someone were to just visit the page on their own or through another search engine, the website does not serve up malicious software.
For more information see this Register.com article Swayze death exploited to serve up fake anti-virus – I’ve had the crime of my life. Seems like malware is bombarding us from all directions now. You can’t even trust ads on the NY Times these days.
Thanks for reading & let’s continue to be good network citizens!