CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
January 8th, 2010

Office.Microsoft.Com Search Results Can Lead To Rogue Anti-Virus

Websense Security Labs has detected that search results on office.microsoft.com can lead users to a Rogue AV page.

Users looking for information related to help with Office products on Microsoft’s own site are being targeted. Users may be unaware that, when they type in search queries on the site, Microsoft scours its own Web site for results, but also pulls in results from the broader Web. As the URL for the search results begins with http://office.microsoft.com, this is particularly troubling for users who trust sites simply because of their reputation.

The malicious URL is a redirect to a very real-looking virus scan and warning page presented by a Rogue AV program (SHA1: 6489c54e30af18801a9e83a5855fa639f3bae0b8). The executable used in the exploit is currently recognized by 1 of the 41 AV engines on Virus Total.

Credit: Websense Security Labs

Share this item with others:

More on CyberInsecure:
  • Google Doodle Poisoned By Rogue Anti-virus Scareware
  • Site Evaluation Results
  • Scareware Affiliates Manipulate Search Engines Resuts By Using Black-hat SEO Techniques
  • Easter Related Search Engine Results Poisoned, Redirect Users To Malicious Applications
  • Fort William Mountain Bike World Cup 2009 Site Hijacked, Redirects Visitors To Rogue Anti-Virus Page

    • Posted in Malware, Microsoft | Print This Post Print This Post

    This entry was posted on Friday, January 8th, 2010 at 4:01 pm and is filed under Malware, Microsoft. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Office.Microsoft.Com Search Results Can Lead To Rogue Anti-Virus

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « «
    » »