Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware

From Botnets.fr
Jump to navigation Jump to search

(Publication) Google search: [1]

Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware
Botnet
Malware
Botnet/malware group
Exploit kits
Services
Feature
Distribution vector
Target
Origin
Campaign
Operation/Working group
Vulnerability
CCProtocol
Date 2010 / 2010-03
Editor/Conference Sophos
Link https://www.sophos.com/medialibrary/PDFs/technical%20papers/sophosseoinsights.pdf (Archive copy)
Author Fraser Howard, Onur Komili
Type Tech report

Abstract

This paper describes recent research by SophosLabs into how attackers are using blackhat Search Engine Optimisation (SEO) techniques to stuff

legitimate websites with content designed to rank highly in search engine results, yet redirect users to malicious sites. These websites are being used to distribute rogue security products (also known as “scareware” or “fake anti­virus”) onto users' computers.

Sophos researchers have analysed the malicious SEO kits used by hackers to create networks of thousands of cross­linked pages containing searchfriendly content on hot­trending topics, hosted on compromised, legitimate websites.

Bibtex

 @misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2010BFR4487,
   editor = {Sophos},
   author = {Fraser Howard, Onur Komili},
   title = {Poisoned search results: How hackers have automated search engine poisoning attacks to distribute malware},
   date = {01},
   month = Mar,
   year = {2010},
   howpublished = {\url{https://www.sophos.com/medialibrary/PDFs/technical%20papers/sophosseoinsights.pdf}},
 }