News19,135 Articles
News spotlights:
Business | CES | Digital audio | Gadgets | Games | Green computing | Home entertainment | Internet & broadband | Laptops | Linux | Macs | PC Peripherals & components | PC security | PCs & laptops | Mobile phones | Digital photography & video | Software | Wi-Fi & networking
News by company:
AMD | Apple | BT | Dell | Google | HP | Intel | Microsoft | Nvidia | Sony
News by product:
Windows XP | Windows Vista | Windows 7 | Apple iPhone | BlackBerry | Apple iPad
May 19, 2009
Google results poisoned with malicious links
Security threat found on legitimate websites
A new attack that peppers Google search results with malicious links is spreading quickly, the US Computer Emergence Response Team has warned.
The attack, which has intensified in recent days, can be found on several thousand legitimate websites, according to security experts. It targets known flaws in Adobe's software and uses them to install a malicious program on victims' machines, CERT said.
The program then steals FTP login credentials from victims and uses that information to spread further. It also hijacks the victim's browser, replacing Google search results with links chosen by the attackers.
Security experts started tracking the attack in March, when it had infected several hundred websites, but in recent weeks the number of infected sites has jumped dramatically. The attack has been called Gumblar because at one point it used the Gumblar.cn domain, though on Monday it had switched to a different one.
Security vendor ScanSafe has counted more than 3,000 infected websites, up from around 800 just over a week ago.
That kind of continued growth is unusual, according to Mary Landesman, a senior security researcher with ScanSafe. Attackers have launched many widespread web attacks over the past few years, but after a few months the total number of infected sites usually drops as webmasters clean up their servers.
With Gumblar, more and more sites are now being infected. Landesman believes it's because Gumblar's creators have been good at obfuscating their attack code and making it harder to spot on infected sites. And because they've been stealing FTP login credentials, they've been able to use a few new tricks to get their software onto the sites. "They're doing things like changing folder permissions … and leaving behind multiple ways that they can get back into the server," she said.
Still, web attacks have become so widespread that Gumblar remains a relatively small-scale phenomenon, according to Symantec Security Response Product Manager John Harrison. Last year, Symantec counted 18 million online attacks against its customers. With Gumblar, it has counted 10,000. "It's really just another day with drive-by downloads," he said. "There really are so many of these."
Security experts say that if you're using a fully-patched system with up-to-date security software, you should be protected from these attacks. To date, they've worked by hitting the victim with malicious PDF or Flash files.
See also:
Free whitepaper: Phishing for victims - Truth, myth and cybercrime
<<newer story | back to index | older story>>
Submit to:
Reddit
Subscribe to PC Advisor now and claim your FREE gift
Question of the day!
Does your smartphone replace your need for a laptop when on the move?
% of PC Advisor readers agree with you
What tasks can your smartphone do that would have traditionally been done on a laptop?
Follow the conversation at @SmartphoneFocus
web browsing, search facilities, voip, email, word processing everything RT @Graham_D_C
Mainly email but getting better at spreadsheets etc, RT @IDGdan
Recent reviews
- Malwarebytes' Anti-Malware Free review
- Kodak ESP 5250 review
- Fujitsu LifeBook T4410 review
- Kodak ESP 3250 review
- Lenovo ThinkCentre A70z review
- Microsoft SideWinder X4 review
- Sony BDP-S360 review
- Acer Liquid review
- LaCie Sound2 review
- ASUS U50Vg review
Latest reader comments
- Jeff2 Its my family and girlfriend who use them and i just cant see the point. Facebook this...
- Bizzo. How can you HATE them if you don't use them? Surely it makes no difference that they're...
- I hate Facebook and Social networking sites. I mean, whats the actual point ? everyone who i...
- I sure do not need 1,000 characters to say that FB pisses me off. No consultation, no "would you...
- Hi Dave, Yes! apple are only doing EXACTLY THE SAME as Microsoft have done for years & years....
Top news
- ComScore: 2009 social networking stats
- Bing boings but Google grows
- Microsoft, Google join MediaTek to boost emerging market sales
- Samsung & LG to show social networking phones
- Google adds Nexus One phone support
Latest blog entries
- Smartphone blogs: best apps, best phones, best freeware
- Smartphone focus: Twitter - will Apple, Google dislodge BlackBerry?
- Google plots instant translator for smartphone
- Free and friendly Windows security software? What's the catch?
- Google Books: time for a rethink?
Sponsored Content
-
Take the internet to new places with the Nokia N800
Communicate how you want to, where you want to with instant messaging, email and internet calling. View movies, browse the internet wirelessly and watch TV on the high-resolution screen and listen through high-quality stereo speakers with headphone jack.
Buy now
Latest technology news:
Sponsored links
-
New - BlackBerry Advisor
Get hands-on with our exclusive Virtual BlackBerry handset and check out the latest reviews of BlackBerry smartphones and software. -
Crucial Memory Upgrades
Go to Crucial.com and use either our Memory Advisor Tool or System Scanner to find a 100% compatible memory upgrade for your system, from the Best Memory Manufacturer of 2008! We offer free delivery, free technical support, and lifetime warranty. -
Award-winning Spyware Doctor with AntiVirus 2010
delivers powerful antivirus and antispyware protection using layered technologies to defend your PC. Download now for a free scan! Discover how our award-winning ThreatFire™ Behavioural Intelligence blocks new threats faster than traditional signature methods. -
PC Advisor Smartphone Focus
Latest news and resources on how smartphones are facilitating mobile and flexible working in the enterprise. Find out more and join the discussion here. -
Custom built PCs
Visit our website to see our full range of custom-built PCs. Customise any specification and have the order dispatched the next working day. A massive range of PCs - from £250 to £1,000-plus - and a full list of low-cost components are available. -
Free whitepaper
Legal risks of uncontrolled email and web use. -
Free whitepaper
Is social networking really bad for business? -
Free whitepaper
Phishing for victims: Truth, myth and cybercrime. -
Free whitepaper
Threat predictions, messaging security issues and trends for 2010. -
Free whitepaper
Email archiving: Top 10 myths and challenges. -
Free whitepaper
Managing email: Exploring common email management challenges (and how to overcome them).
About PC Advisor | Privacy policy | Media information | Site map | Contact | About IDG
All contents ©IDG 2010 | webmaster@pcadvisor.co.uk
Comments received
rosaleen pooler said on Thursday, 21 May 2009
i have just had a corupt trojan on my compter from a virus called personal virus, i have sky broadband but have mcafee security on my computer and ahve been told i have to pay to get rid and am not pleased about that is their anyway of removing it.
Peter H said on Sunday, 31 May 2009
Rosaleen - who's asking for money to remove a virus?
Surely not McAfee, their VRT is free.
Suzart said on Monday, 01 June 2009
I have the same thing and McAfee want £49.00 to clean it up - Strange the virus got on my system as McAfee was in stalled by dell
Help Please
Dragon said on Monday, 01 June 2009
MacAfee was the 1st antivirus I used. I was never that impressed with it as it could not deal with Trojans. I had to seek out where it was hiding and remove it manually. I then bought Norton. What a nasty bit of bloatware that was. New to PC's I had never heard of Freeware. Thanks to Scott at the Freeware Arena, I tried all sorts of applications for all sorts of problems.
Now I use Avast Free, which updates automatically every 6 hours, and have no problems. I give the PC a sweep with A Squared once a week [again the Free version] . That has to be manually updated but removes worms, trojans and other malware with no problem. Even my FW is Freeware. Why pay when the Freeware is so good?