How The Google AdWords Scam Was Done...
Mark Coker, representing Exploit Prevention Labs:
Some cyber criminals opened a Google Adwords
account and ran ads posing as trusted organizations like the Better
Business Bureau. When users clicked on the ad, they were redirected to
a site that installed a post-logger keylogger on their machine (if it
wasn't patched with the lasted MSFT security update).
Exploit Prevention Labs discovered the attack. Roger Thompson CTO at Exploit Prevention Labs posted a video that explains how it was done.
- - -
Apr 27, 2007
Google AdWords attack documented in new video from Exploit Prevention Labs
Security software developer Exploit Prevention Labs today released a video at http://explabs.blogspot.com documenting how cybercriminals are using Google's popular AdWords advertising system to infect unsuspecting users with malware. As the video shows, cybercriminals ran Google ads for legitimate, trusted organizations like The Better Business Bureau. Read more.
Apr 25, 2007
Google AdWords Falls Victim to Cyber Criminals
Researchers at security software developer Exploit Prevention Labs have uncovered hard evidence that cybercriminals are using Google AdWords to infect unsuspecting users with malware. Under the guise of ads for legitimate, trusted organizations like The Better Business Bureau (see screen shot), unsuspecting users are instead redirected to malicious sites that attempt to install exploits and other malware. Exploit Prevention Labs first learned of this new attack vector April 10 when a LinkScanner Pro user ran a Google search on the phrase "how to start a business". The top-ranked sponsored search listing appeared to be from AllBusiness.com, a legitimate business, yet the hyperlink actually led to a site that attempted to install a password-stealing keylogger on the user's PC. LinkScanner Pro blocked the threat and automatically reported the discovery back to Exploit Prevention Labs researchers, who launched an immediate investigation. Read more.