Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity
    • IT Management
    • PC Hardware

    Webroot Says Hackers Exploit Google Trends with Malware

    By
    Clint Boulton
    -
    October 1, 2008
    Share
    Facebook
    Twitter
    Linkedin

      Security software maker Webroot said hackers are now leveraging Google Trends to lure unsuspecting victims to fake blog Web sites riddled with malware.
      Launched in May 2006, Google Trends lets searchers enter up to five topics and see how much they’ve been searched on Google, as well as how frequently those topics have appeared in Google News stories around the world.
      When Google Trends detects a spike in the volume of news stories for a particular search term, it labels the graph and displays the headline of an automatically selected Google News story written near the time of that spike.
      Hackers are apparently leveraging Trends to find out what stories people are most likely to look for, based on the subject’s popularity. To seed their dirty code, hackers construct fake blogs with video links about the news for which users were searching.
      News hooks are likely to include popular news stories, such as bits about the presidential campaign, the financial failures on Wall Street or Major League Baseball’s playoffs.
      Once a user clicks on one of the video links, they are asked to download a video codec. The codec downloads a rogue anti-spyware program geared to bait the user into buying an illegitimate program that may put their personal information and data at even greater risk.
      One question bothered me about this scenario. How does Webroot know that Web sites are using Google Trends for their malware mischief?
      Paul Piccard, director of threat research for Webroot, told me that in the course of his research, some of the malware proprietors brazenly mentioned on their Web sites that they leveraged search results from Google Trends as news hooks to lure users.
      Hiding malware in video links on fake blogs is hardly new, but leveraging the relevancy Google’s algorithms enable to bolster malicious site traffic is an increasing and disturbing trend. Piccard told me:

      “Malware distributors are going to where the people are instead of setting up sites that may or may not be relevant to a user’s interests. Just like a legitimate Web site, they [hackers] are determining how to drive traffic to their Web site to download malware. By looking at Google Trends, they are able to get a better idea of what people are interested in and how they can trick users to click on their links through search results or appear to be relevant to what a user is searching for. If you’re looking for something about Wachovia and the bank group buying them, you’ll start seeing these results, you’ll click on one and you’ll assume it’s legitimate when in fact it’s a malware distribution platform.“

      I asked for a link to a specific example of a site but Piccard said that due to the risky nature of their malware missions, the sites go up and down so quickly. But I’ve asked him to keep an eye out and will update with a link to one if it presents itself.

      If anyone else out there spots a site they believe delivers malware and mentions Google Trends, please drop me a line.

      So what is a user to do? The obvious duty is to be vigilant. Avoid these exploits by refraining from downloading content from sites you’re not certain you can trust.
      Webroot said users can also avoid these Google Trends malware traps by installing current Microsoft or Mac security packages and keeping anti-spyware products current.

      Clint Boulton
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×