JSKY Posted October 3, 2005 Report Share Posted October 3, 2005 From ZDNet SecurityZDNet SecuritySecurity experts have discovered a malicious program aimed at tricking users into clicking on phony search results on fake Google, Yahoo and MSN sites.People with infected machines who try to visit those popular search sites are redirected to spoof versions, antivirus company Panda Software said Friday. The spoof sites serve up bogus search results intended to generate traffic and revenue for other sites that are presumed to be in on the scheme, said Patrick Hinojosa, Panda's chief technology officer."This is a business; this is organized crime," Hinojosa said. "People are making money on it."Representatives from Google, Microsoft and Yahoo did not immediately return inquiries for comment.Machines can become infected with the program, called PremiumSearch, when visiting Web sites that distribute pirated software and pornography, Panda reported. Hinojosa said he doesn't know how many machines have been infected.Besides altered search results, the spoof sites are indistinguishable from the original version, the company said. The program also installs a fake Google toolbar that similarly interferes with results.Hinojosa said Panda notified the Internet service provider that is hosting the spoof sites in the United States. He declined to name the ISP, noting that it might have already shut the sites down. Panda also notified federal authorities, including the FBI, he said.Panda, which is based in Bilbao, Spain, makes software to combat viruses, worms, spyware and other unwanted programs. It discovered the PremiumSearch threat through its "early warning system." Quote Link to post Share on other sites
TheTrueDarkOne Posted October 4, 2005 Report Share Posted October 4, 2005 thanks for the heads up Quote Link to post Share on other sites
rv56 Posted October 5, 2005 Report Share Posted October 5, 2005 Yes Thank you JSKY for posting this warning. Geez being a noob and all (me) it just amazes me to what lengths people will go through just to get at someones computer. Quote Link to post Share on other sites
sultan_emerr Posted October 6, 2005 Report Share Posted October 6, 2005 Start/Control Panel/Display/display properties/appearence/color scheme/ olive green/apply/ok/ok. Then if you click onto a webpage, and it comes up in the MS default blue, then you will know you are on a fake/spoofed page, and you should close out immediatly, and run a scan for infections.Right-click desktop/properties/display properties/appeareance/color scheme/olive green/apply/ok/okhttp://www.corestreet.com/spoofstickhttp://www.snapfiles.com/get/guardbar.html[/L] + http://www.diamondcs.com.au/processguard/i...p?page=download Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.