RSS Alerts

Related Links

Related Stories

  • Rogue anti-virus scamware hitting hard, says Webroot
    Research by Webroot suggests that the rash of anti-virus scamware - which reports that the users' PC is infected, when it is not, and then requests a payment for registration - is sucking in a lot of internet users.
  • Search for security
    With more than 30 000 web pages being infected every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves.
  • Koobface rises again - this time it's a Christmas greeting
    Reports are coming in of a new variant of the Koobface worm doing the rounds of PCs connected to the internet. This latest variation of the long-running criminal-driven malware uses a Christmas greeting to spread infections via the Facebook social networking portal.
  • Gumblar malware attack sweeps web
    A modified attack that alters Google searches is taking the web by storm according to security researchers, who have identified more malware domains being used in the attack.
  • Online ads are an avenue for viruses
    Researchers at Alwil Software, the company behind the popular Avast IT security software, say that portals such as Fox Audience Network and Yahoo are topping the firm's lists of compromised online ad servers and potentially infecting internet users.

News

Fake search engines used to divert users to malware infected websites

07 May 2009

Hackers are starting to create fake search engine sites to divert hapless internet users to malware infected websites, says PandaLabs, the research operation of Panda Security.

According to researchers at PandaLabs, when internet users look for popular text searches such as 'flu statistics,' they are being offered URLs that lead them to websites containing video reports.

These video reports require users to download new 'video codecs' to view them, but the download/install code is actually a malware infection, says the IT security vendor Panda Security.

The nett result of the install is that users are infected with fake antivirus applications which then attempt to extort money from users by pretending their PC is infected and only the newly-installed IT security application can remove the 'infection.'

The situation is being compounded, Infosecurity notes, with a similar methodology applied to releases of the latest movies via BitTorrent file-sharing indexes.

A search for the latest Star Trek film - which is released to UK cinemas this week - for example, gives BitTorrent users access to what appears to be a 700MB download file of the film, which then requires users to install a 'Masters Release video codec.'

The download appears to be a piece of malware that routes users to a number of rogue websites using a bogus search engine add-in to the user's web browser software.

And as well as being infected, users still cannot view their copy of the Star Trek film - which appears to be another film entirely.

Unconfirmed reports suggest that the infected copy of the Masters Release of Star Trek is being fileshared by thousands of users on the internet.

 

 

This article is featured in:
Application Security Internet and Network Security Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water