Web attack that poisons Google results gets worse
The Gumblar attack has infected more than 3000 Web sites
By Robert McMillan , IDG News Service , 05/19/2009
A new attack that peppers Google search results with malicious links is spreading quickly, the U.S. Computer Emergency Readiness Team warned on Monday.
The attack, which has intensified in recent days, can be found on several thousand legitimate Web sites, according to security experts. It targets known flaws in Adobe's software and uses them to install a malicious program on victims' machines, CERT said.
The program then steals FTP login credentials from victims and uses that information to spread further. It also hijacks the victim's browser, replacing Google search results with links chosen by the attackers.
Security experts started tracking the attack in March, when it had infected several hundred Web sites, but in recent weeks the number of infected sites has jumped dramatically. The attack has been called Gumblar because at one point it used the Gumblar.cn domain, though on Monday it had switched to a different one.
Security vendor ScanSafe has counted more than 3,000 infected Web sites, up from around 800 just over a week ago.
Security experts say that if you're using a fully-patched system with up-to-date security software, you should be protected from these attacks. To date, they've worked by hitting the victim with malicious PDF or Flash files. [emphasis mine]
Web attack that "poisons" Google results is spreading
Last month (August 2015), Governor Haslam issued a "Request for Information," seeking input from companies to which the state could outsource jobs in…
http://elisem.livejournal.com/1869278.html Once upon a time, Elise made two little crowns, suitable for My Little Ponies. One was called (to the…
If you're interested in poetry on the theme of cats, and things that are not cats but are called cats, check out Ysabet's unsold poetry from July (…