Trojan Threatens Google, Romanian Antivirus Firm ReportsBest Security Tips offers daily news, information, advices and tips about spyware, adware, viruses, trojans, web vulnerabilities, hackers, other threats    | Register now | Login
   
TIPS NEWS TOOLS DOWNLOADS MALWARE FORUM BOOKS FREE MAGAZINES FREE WEBCASTS & VIDEOS
GFI LANguard - New Version 9 Out Now - Dld 30-day trial!   Get A Free iPod   Bookmark and Share 
Best Tips
Security Scanner
Security Categories
Advertise With Us!
Latest Viruses / Threats
2009/12/24 0:00:00
2009/11/7 19:22:16
2009/11/7 19:22:16
2009/11/7 19:22:16
2009/11/7 15:40:03
Our Partners
Downloads
Security Incidents : Trojan Threatens Google, Romanian Antivirus Firm Reports
Posted by Max on 2007/12/23 0:41:27 (1477 reads)
Security Incidents

According to Romanian security company Bitdefender, Google faces these days a new threat in the form of a Trojan like malware which basically replaces text advertisements on Web pages with ads from a different source, thus taking a good bite from Google’s revenue and most likely also causing problems for Webmasters.

What this software which BitDefender calls Trojan.Qhost.WU does is altering information in the infected computer’s host files which are responsible with matching the domain names of Web sites with the IP addresses. The result is that the browser is redirected to a new web address instead of the one which displayed Google’s AdWords.

BitDefender representatives highlighted the potential danger behind those substituting advertisements which could contain links to malicious sites. Furthermore, both Web site owners who buy ads through Google and Google itself are subjected to losses regarding Web traffic as well as the potential money source ads represent.

However, the security company estimated the risk of this Trojan as medium although Google cannot be of great help for those who download the malware; no worries there, still, BitDefender does a great job at both detecting and removing it.

On this issue Google came forward on Wednesday saying that "We have canceled customer accounts that display ads re-directing users to malicious sites or that advertise a product violating our software principles " […]"We actively work to detect and remove sites that serve malware in both our ad network and in our search results. "

For those concerned with the safety of their systems it seems that the easiest way to figure out for yourself if an entry in the host file replaces ‘localhost’ with an actual IP, one that would be redirecting to another source and not Google’s AdWords is to check the hosts file, which is at c:\windows\system32\drivers\etc\hosts.




Other articles
2009/11/3 14:55:39 - BitDefender Top Ten Malware Threats for October 09
2009/11/3 14:29:38 - Nov. 09 Microsoft Security Intelligence Report
2009/10/7 15:19:17 - StopSign AntiVirus and Anti-Malware is Windows 7 Compatible
2009/10/7 15:11:26 - New Outlook Backup and Migration Software By Disk Doctors
2009/9/30 4:20:57 - Microsoft Security Essentials, FREE Security Tool Just Released
2009/9/28 14:31:52 - New Rogue Antispyware Cloaked To Infects Computers
2009/9/9 4:31:49 - Trend Micro Proves Leadership in URL Filtering and Web Security
2009/9/9 4:16:20 - New Free Tool to Clean Conficker Once and For All
2009/9/1 8:37:11 - Kaspersky Internet Security 2010 and Kaspersky Anti-Virus 2010 Out Now
2009/9/1 7:54:50 - NEW P2P Advertising Network Protects Users Against Lawsuits And Identity Theft

The comments are owned by the poster. We aren't responsible for their content.