Misspelled URL takes users to malicious web site

By

Researchers at antivirus company F-Secure have discovered a malicious website that targets users who make a spelling error when they type in Google.com.

If a user trying to visit the popular search engine accidentally types "Googkle.com," they will open up a malicious web site that attempts to exploit known vulnerabilities in the web browser - mostly Internet Explorer - to drop spyware onto the machine, said Ero Carrera, F-Secure virus researcher.


On its web site, F-Secure urged users to not go to the malicious web site. As of Wednesday afternoon, the site was still up, Carrera said. Researchers have reported the site, which is owned by people with Russian names, to authorities.

F-Secure researchers have seen the technique used before, but usually the spoofed web site aims to make a political statement of some sort, not to install malware, Carrera said.

www.f-secure.com

 

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers

Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies

Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound

Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames

Log In

  |  Forgot your password?