Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware
Jump to navigation
Jump to search
(Publication) Google search: [1]
| Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware | |
|---|---|
| Botnet | |
| Malware | |
| Botnet/malware group | |
| Exploit kits | |
| Services | |
| Feature | |
| Distribution vector | |
| Target | |
| Origin | |
| Campaign | |
| Operation/Working group | |
| Vulnerability | |
| CCProtocol | |
| Date | 2010 / 2010-03 |
| Editor/Conference | Sophos |
| Link | https://www.sophos.com/medialibrary/PDFs/technical%20papers/sophosseoinsights.pdf (Archive copy) |
| Author | Fraser Howard, Onur Komili |
| Type | Tech report |
Abstract
“ This paper describes recent research by SophosLabs into how attackers are using blackhat Search Engine Optimisation (SEO) techniques to stuff
legitimate websites with content designed to rank highly in search engine results, yet redirect users to malicious sites. These websites are being used to distribute rogue security products (also known as “scareware” or “fake antivirus”) onto users' computers.
Sophos researchers have analysed the malicious SEO kits used by hackers to create networks of thousands of crosslinked pages containing searchfriendly content on hottrending topics, hosted on compromised, legitimate websites.
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2010BFR4487,
editor = {Sophos},
author = {Fraser Howard, Onur Komili},
title = {Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware},
date = {01},
month = Mar,
year = {2010},
howpublished = {\url{https://www.sophos.com/medialibrary/PDFs/technical%20papers/sophosseoinsights.pdf}},
}