Brute force attack yields keys to Google's kingdom This story was updated on 2nd October to add comment from Google. Miscreants pushing Viagra and malware are making new progress infiltrating Google indexes, a feat that's considered the Holy Grail among spammers. Google, which by some estimates carries out 60 per cent of the world's searches, goes to great lengths to filter …
and long word lists the owners use .name registration for the script and .cn to host the list and all the pages are alphabetic jjhg.html xzc.html.I have been trying to figure out what it does exactly for a couple of weeks it seems to be tied in to links from spam emails using the I'm feeling lucky url encoded query string to unblock known spamvertisers
for that to work it has to be the number one search result it's not supposed to be possible to just dial in a number one search result is it.If it is I want to use it Google better beat me to it.
When I visited the site linked from the Dvorak article, I got a page of nonsense words; I was then redirected to a site with a message to the effect of "Now scanning C:\WINDOWS\system32\32\drivers\..." Repeat visits redirected to various different sites. Later, it told me I was infected with Backdoor:Win32/NTRoot, Backdoor:Win32/Sivuxa. and Trojan:Caiijing.
Considering that I'm running Debian on a pure 64-bit system (no 32-bit code *at all*), that is truly impressive!
"John C. Dvorak talked about this in his column weeks ago.
http://www.pcmag.com/article2/0,1895,2188281,00.asp"
OT but, there's a link from the pcmag site to JCD's crankygeeks.com where he has a video magazine thingy. Watching the latest episode now (#83) and noticed there's some guy on the show called Drew Cullen from The Reg...
The Google index is full of garbage; search for almost anything and you'll get a blizzard of results for referrers, pretend blogs and abandoned domains now pointing at even more referrers. Sure, no one has been able to directly manipulate the Google index but all you have to do is keep saturating the index in enough dud web sites and they'll start appearing. We all know Google is under persistent attack from the pond scum that inhabit the Internet and this just confirms it.
#1. Just don't make it a link.
#2. If you insist on making it a clickable hyperlink, break it by munging the hostname part of the URL, not the URI path, because if it's not a real webserver but a malware-hosting-zombie, it's entirely likely that it completely ignores the path and just returns the same exploit for all URLs on the supposed website.
What you've done here is the worst possible way of trying to protect your readers. I suggest you edit the article and de-linkify it ASAP.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
