Article

Brief: Malicious Web site poses as Google

SearchSecurity.com Staff

A security vendor is warning Web surfers to beware of a malicious Web site that poses as a legitimate Google page.

According to Scotts Valley, Calif.-based endpoint security provider SurfControl, the malicious site spoofs Google's Italian Web site and uses typo squatting, a technique that "mimics a legitimate looking domain and delivers a fraudulent Google page that looks identical to the original."

The fraudulent site attempts to install ActiveX controls on a user's machine. "This will occur automatically if Internet Explorer security settings allow installation of ActiveX controls," SurfControl said in a statement. "Otherwise, the end user will have to accept the installation for the infection to occur. If the ActiveX control is accepted, a number of Trojans are installed, redirecting the homepage to a Web site featuring adult content."

In addition to browser hijacking, SurfControl said the Web site installs a keylogging Trojan that monitors keystrokes and sends information to a remote location. The vendor said it has witnessed incidents where infected machines tried to send out malicious spam emails.

    Requires Free Membership to View


There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: