[security-alerts] Небезопасные ссылки на странице поиска в Google

["Kazennov, Vladimir" <Vladimir.Kazennov@xxxxxxxxxx>]

> 
>  --Malware Purveyors Exploit Sponsored Links on Google 
> (April 24 & 26, 2007)
> Cyber criminals have reportedly bought sponsored links on frequently
> visited Google search pages; the malicious links take users 
> to the sites
> they intend to visit, but on the way, users are momentarily sent to a
> malicious site that attempts to download a backdoor and a post-logger
> on their computers. Part of the problem lies in the fact that when a
> user rolls a mouse over the sponsored link on the Google 
> search results
> page, the browser does not display the URL at the bottom of 
> the screen,
> so the user does not have a clear picture of where the click 
> will lead.
> Furthermore, the malware site is given a name that makes it appear to
> be a third-party tracking site so users do not become suspicios. The
> post-logger targets roughly 100 different banks "by injecting 
> extra html
> into those banks' response pages to try to coax extra information out
> of the victim." Google has apparently shut down the account 
> serving the
> advertisements.
> http://www.computerworld.com/action/article.do?command=viewArt
> icleBasic&articleId=9017862&source=rss_topic17 
> http://www.securitypronews.com/insiderreports/insider/spn-49-2
> 0070426GoogleAdsLedToPCInfections.html 
> http://explabs.blogspot.com/2007/04/google-sponsored-links-not
> -safe.html
> 

> 
>  --Lawsuit Seeks Identities of eMail Address Harvesters
> (April 25, 2007)
> A lawsuit will be filed on behalf of Project Honey Pot, a service of
> Unspam Technologies LLC representing 20,000 people around the world in
> an attempt to uncover the identities of those responsible for 
> harvesting
> email addresses that are then provided to spammers.  Unspam's 
> anti-spam
> tool has software that generates pages with "spam trap" email 
> addresses.
> Each time the page is visited, the visitor's IP address and 
> the time and
> date of the visit are recorded.  Because these addresses are 
> never used
> in any way that could indicate an agreement to receive unsolicited
> commercial email, the information collected can help make connections
> between people harvesting the addresses and the spammers who use their
> lists.  The defendants in the lawsuit are listed as John Doe 
> because the
> plaintiffs want the court to allow them to subpoena records from ISPs
> associated with the IP addresses they have collected to confirm the
> harvesters' identities.
> http://www.washingtonpost.com/wp-dyn/content/article/2007/04/2
> 5/AR2007042503098_pf.html