The Unmask Parasites blog has uncovered a devious method being used by a particular network of malware sites. Maleware purveyors are creating subdirectories in legitimate blogs where they host their own illegitimate blogs.
The illegitimate blogs are targeted toward very specific and unpopular Google search terms, such as “blue mustang picture”, “upstate ny photos”.
Interestingly, the malware isn’t presented if you go directly to the site, only if you go through Google. The malware is presented in the form of bogus anti-virus software, but not directly. Rather, obfuscated Javascript redirects are used to prevent blacklisting.
Unmask Parasites cites this as another reason to be running the Firefox NoScript plugin, which allows Javascript only for specified sites.
Another plugin for this purpose, much simpler than NoScript, is QuickJava, which allows you to turn Javascript on and off with a single click.
It’s also another reason to keep WordPress (or whatever blog software you’re using) updated and to regularly check your installation for problems.
Read the details of the malware network at Unmask Parasites.
If you liked this article
If you liked this article, don’t forget to subscribe for updates!
Get updates by RSS (What’s RSS?)
Follow me on Twitter
Top Incoming Search Terms
google malware rssRelated posts:
- English Shellcode: A New Method for Malware Attacks The wedge end of malware code can be made to...
- Target.com games Google SERPs, and Google blinks Target.com is unfairly flooding Google with 15 million error pages...
- Google Homepage Doodle Honors Jorge Luis Borges If you went directly to google.com today, you see a...
- Google Adds Favicons to Google Webmaster Tools When I logged in to Google Webmaster Tools today, I...
- Facebook Surpasses Google: What Does It Mean? A number of sources are reporting Facebook has surpassed Google...
Explore related content: blog, Google, malware


![[del.icio.us]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/delicious.png)
![[Digg]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/digg.png)
![[dzone]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/dzone.png)
![[Facebook]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/facebook.png)
![[LinkedIn]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/linkedin.png)
![[Reddit]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/reddit.png)
![[Slashdot]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/slashdot.png)
![[StumbleUpon]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/stumbleupon.png)
![[Technorati]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/technorati.png)
![[Twitter]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/twitter.png)
![[Yahoo!]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/yahoo.png)
![[Email]](http://digitivity.org/blog/wp-content/plugins/bookmarkify/email.png)

