All the latest UK technology news, reviews and analysis
|
|
|
15 Feb 2006
Malware authors are increasingly creating digital pests that use Google to find their next victim.
Using the search tool for automated vulnerability detection is the latest trend in a technique known as 'Google hacking'.
George Kurtz, senior vice president for risk management at security firm McAfee, told vnunet.com about the phenomenon after a presentation at the RSA Conference in San José.
The Santy.a worm, for instance, targeted a known vulnerability in some versions of the phpBB open source bulletin board application to deface websites. It found its victims through an automated Google search query.
Google eventually stopped the worm from spreading by blocking all searches that would turn up servers running the application. But the search engine is able to detect the abuse only if the queries stand out from other searches.
Google 'hacking' does not mean breaking into the company's servers but involves online criminals using Google and other search engines to find sensitive information on the internet.
Hackers have used search engines to assist in break-ins ever since the creation of online search.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
My client is a well established, non profit organisation;...
PHP Web Developer – £30,000 - £35,000 PHP, MySQL, HTML...
HEAD OF DIGITAL - London - £80-95K + Excellent Bens...
Agile C# Developer - (North London) £55,000 - £65,000...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?