Language Selection

English French German Italian Portuguese Spanish

Beware How You Google

Filed under
Web

A simple misspelling of Google's domain name could lead to a Web surfer's worst nightmare.

In a new twist to the old practice of "typosquatting," virus writers have registered a slight variation of Google Inc.'s popular search-engine site to take advantage of any users who botch the spelling of the google.com URL.

The malicious site, googkle.com, is infested with Trojan droppers, downloaders, backdoors and spyware, and an unsuspecting user only has to visit the page to be at risk of computer hijack attacks, according to a warning from Finnish anti-virus vendor F-Secure Corp.

When googkle.com is opened in a browser, two pop-up windows are immediately launched with redirects to third-party sites loaded with scripts. One of the sites, ntsearch.com, downloads and runs a "pop.chm" file, and the other, toolbarpartner.com, downloads and runs a "ddfs.chm" file, F-Secure said.

"Both files are downloaded using exploits and they contain exploits themselves to run embedded executable files. One of the Web pages of the 'toolbarpartner.com' website downloads a file named 'pic10.jpg' using an exploit. This JPG file is actually an executable that replaces [the] Windows Media Player application," the warning reads.

The typosquatters also launch a steady stream of pop-up Web pages with different .exe files.

One batch of exploits loads a malware package that includes two backdoors, two Trojan droppers, a proxy Trojan, a spying Trojan and a Trojan downloader.

It is not yet clear if the attack vector takes advantage of an unpatched version of Microsoft Corp.'s Internet Explorer. Redmond officials could not be reached for comment.

Full Story.

More in Tux Machines

CentOS vs Ubuntu: Which one is better for a server

Finally decided to get a VPS but can’t decide which Linux distro to use? We’ve all been there. The choice may even be overwhelming, even for Linux distros, considering all the different flavors and distros that are out there. Though, the two most widely used and most popular server distros are CentOS and Ubuntu. This is the main dilemma among admins, both beginners and professionals. Having experience with both (and more) distros, we decided to do a comparison of CentOS and Ubuntu when used for a server. Read more

This Script Updates Hosts Files Using a Multi-Source Unified Block List With Whitelisting

If you ever tinker with your hosts file, you should try running this script to automatically keep the file updated with the latest known ad servers, phishing sites and other web scum.

Read more

via DMT/Linux Blog

today's leftovers

  • FLOSS Weekly 417: OpenHMD
    Fredrik Hultin is the Co-founder of the OpenHMD project (together with Jakob Bornecrantz). OpenHMD aims to provide a Free and Open Source API and drivers for immersive technology, such as head-mounted displays with built-in head tracking. The project's aim is to implement support for as many devices as possible in a portable, cross-platform package.
  • My next EP will be released as a corrupted GPT image
    Endless OS is distributed as a compressed disk image, so you just write it to disk to install it. On first boot, it resizes itself to fill the whole disk. So, to “install” it to a file we decompress the image file, then extend it to the desired length. When booting, in principle we want to loopback-mount the image file and treat that as the root device. But there’s a problem: NTFS-3G, the most mature NTFS implementation for Linux, runs in userspace using FUSE. There are some practical problems arranging for the userspace processes to survive the transition out of the initramfs, but the bigger problem is that accessing a loopback-mounted image on an NTFS partition is slow, presumably because every disk access has an extra round-trip to userspace and back. Is there some way we can avoid this performance penalty?
  • This week in GTK+ – 31
    In this last week, the master branch of GTK+ has seen 52 commits, with 10254 lines added and 9466 lines removed.
  • Digest of Fedora 25 Reviews
    Fedora 25 has been out for 2 months and it seems like a very solid release, maybe the best in the history of the distro. And feedback from the press and users has also been very positive.
  • Monday's security updates
  • What does security and USB-C have in common?
    I've decided to create yet another security analogy! You can’t tell, but I’m very excited to do this. One of my long standing complaints about security is there are basically no good analogies that make sense. We always try to talk about auto safety, or food safety, or maybe building security, how about pollution. There’s always some sort of existing real world scenario we try warp and twist in a way so we can tell a security story that makes sense. So far they’ve all failed. The analogy always starts out strong, then something happens that makes everything fall apart. I imagine a big part of this is because security is really new, but it’s also really hard to understand. It’s just not something humans are good at understanding. [...] The TL;DR is essentially the world of USB-C cables is sort of a modern day wild west. There’s no way to really tell which ones are good and which ones are bad, so there are some people who test the cables. It’s nothing official, they’re basically volunteers doing this in their free time. Their feedback is literally the only real way to decide which cables are good and which are bad. That’s sort of crazy if you think about it.
  • NuTyX 8.2.93 released
  • Linux Top 3: Parted Magic, Quirky and Ultimate Edition
    Parted Magic is a very niche Linux distribution that many users first discover when they're trying to either re-partition a drive or recover data from an older system. The new Parted Magic 2017_01_08 release is an incremental update that follows the very large 2016_10_18 update that provided 800 updates.
  • How To Use Google Translate From Commandline In Linux
  • How to debug C programs in Linux using gdb
  • Use Docker remotely on Atomic Host
  • Ubuntu isn’t the only version of Linux that can run on Windows 10
  • OpenSUSE Linux lands on Windows 10
  • How to run openSUSE Leap 42.2 or SUSE Linux Enterprise Server 12 on Windows 10

Leftovers: Software and Games