Tuesday, March 20, 2007

Google's blog software hijacked by scammers

Google's blogger.com is being hijacked to spread malware through fakeblogs, a security vendor has warned.

According to Fortinet, Genuine-looking blogs on topics as wide-ranging as "Star Wars, school, furniture, Christmas, cars and girlfriends" are now being created to host a variety of script-initiated malware. It would be impossible for visitors to spot the danger of these sites, which now number in the hundreds, the company said. Although they look genuine, it appears that all the sites havebeen specially crafted to fool visitors.

Fortinet gives examples of the sites, including one for a supposed fan of the Honda CR450 motor car, which attempts to infect visitors with the Wonka Trojan. In another, the fake blog redirects visitors to a store front purporting to be Pharmacy Express, a phishing site that has turned up in many spam emails distributed by the Strationworm.

No comments: