Fake security blogs lead to malware

Blogger sites play on fears to draw victims to porn, trojans.

According to a report from Aladdin, numerous fake security blogs have been set up on the Google-owned Blogger blogging system, some carrying security news items taken from other sites including Aladdin's own website, and all redirecting to unrelated content, with porn and rogue anti-malware software on offer as well as exploits aiming to infect systems with trojans.

VB100

'The use of security-related content is clearly designed to draw traffic to the sites, targeting more alert users who monitor developments in the security world to ensure they keep informed about, and protected from, the latest threats,' said John Hawes, Technical Consultant at Virus Bulletin. 'In this case, the stolen news stories seem to have backfired somewhat by attracting unwanted attention from security firms, who will now surely pay close attention to protecting users from the threats being pushed by these sites, and work extra hard to get them blocked or taken down.'

More details of Aladdin's findings are on their research team's blog here, with more coverage in a Network World piece here.

04 February 2008

Tags: aladdin, blog, malware, trojan.    del.icio.us  digg this! digg this

Quick Links

Poll

When do you install software updates?
As soon as they are released
As soon as I have some time
I take my time, but I always install them eventually
Only when I feel it is absolutely necessary
Never
Leave a comment
View 12 comments
Jobs Career Sidebar
Twitter Feed

virusbtn: RT @emailsecmatters: The typical spam message has sources as diverse as the spam lunch meat: http://ht.ly/2yucd
1 hour ago

virusbtn: Can anyone write a rap about our RAP tests (http://bit.ly/255ySQ) and submit it to the Symantec competition http://bit.ly/bOJg8r
5 hours ago

Malware Prevalence

Autorun |########|
Conficker/Downadup |######|
VB |#####|
Agent |#####|
FakeAlert/Renos |####|
 View this month's full report
Virus Bulletin currently has 208,221 registered users.