SEO poisoning is a sophisticated attack that is being perpetrated on a daily basis. Basically, the hacker includes a script (in apache config, in your WordPress blog, htaccess, etc.) that says, if the incoming user agent = googlebot, etc. SEND THEM here. If it’s not, display that site. So, in our customer’s example, all of […]
This week thousands of system administrators who make use of Goolge products will open their inbox to see an email from Google explaining that their Web Optimizer product contains an XSS flaw that allows hackers to inject scripts into their Google Optimized web pages.
Many customers ask me, “so what’s the big deal about this Google banning thing?”. As I try and explain Google’s algorithms, the lovely joy of begging to be allowed back into their (Google’s) good graces and the challenges of ensuring continued ‘cleanliness’, I feel sometimes a picture is a better idea. Sometimes the worst part […]
On the 4th of July 2010 YouTube users began complaining that their videos had been hijacked, the comments section of their videos seemed to be most severely affected, many complained that old comments vanished and new comments could not be added. Others reported that offensive messages were popping up on their screen or scrolling horizontally in large fonts and striking colors. Some users also seemed to suggest that there were experiencing page redirects, often to sites promoting pornographic content.
One big thing that is missing from this industry is empirical trend data that supports the TRUE risks and costs associated with hacking and malware infections. To date, we’ve written quite alot about customer-specific impacts when they are infected… The ‘results’ run the gambit of 1000’s of dollars of losses over time, loss of SEO […]
Question and Answer on Help Net Security; Google Hacking with Robert Abela, Acunetix Technical Manager. In this intervie we discuss: The importance of Google for security research What kind of information about a target a penetration can find out by using Google Tips to those that want to use Google for Information gathering Advise to […]
The year debuted with ‘Operation Aurora‘: Google and over 30 other companies were hit by a spear phishing attack which resulted in theft of intellectual property from Google and probably other companies. Spear phishing is a targeted form of phishing in which an e-mail message might look like it comes from your employer, or from a colleague […]
This warning does not refer to this particular site (Acunetix.com) but to quite a few websites out there. This is a notice that will show up when a Google search lists websites that are flagged as dangerous. Google’s search engine works together with StopBadware.org to prevent website visitors from visiting websites that may attempt to […]