You are here: silicon.com > Software > Security Strategy

Security Strategy

Malware alert: Google warns of 'dirty' websites

One in 10 websites has a 'ghost in the browser'...

Tags: research, sophos, google, malware

By Tim Ferguson

Published: 14 May 2007 15:23 BST

Google has warned web users of the increasing threat posed by malware that can be dropped onto a computer as a web surfer visits a particular site.

The search giant carried out in-depth research on 4.5 million websites and found one in 10 web pages could successfully launch a 'drive-by-download' - such as a Trojan - onto a user's computer.

The software potentially allows hackers to access sensitive corporate information or install rogue applications.

Graham Cluley, senior technology consultant at Sophos, told silicon.com Google is right to highlight what he said is a worsening trend and "a considerable problem" for businesses and end users.

Cluley said an average of around 8,000 new URLs containing malware emerged every day during April.

Know your network

Find out what issues you should consider when managing your most important IT asset - your network - in our special report.

Most worrying, 70 per cent of URLs hosting such malware are found on legitimate websites that have been targeted by hackers. The outdated notion that malware only resides in the darker corners of the internet is far from the case now.

The means used to place malware on websites includes breaches of web server security, user-posted content, rogue advertising and third-party widgets.

Cluley said: "They [hackers] used to spread malware by email attachment. What they do now is spam out URLs."

He warned businesses: "You cannot protect users by restricting what sites they go to. You need to start protecting your web access as well as your email gateway."

Google's The Ghost in the Browser report said the rise in web-based malware has been aided by the increasing role the internet plays in everyday life, along with the ease in setting up websites.

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

  • Jobs
Backbone Network Engineer

We deliver websites, web-based IT systems, and computing as a service. Backbone Network Engineer - Cisco, BGP, OSPF Company Description: Rackspace ...

Systems Testing Manager

Bringing a plethora of skills and a wealth of experience to this role, you'll be given responsibility as a Business Partner for ensuring the full ...

Procurement Consultant / Senior Consultant

The practice carries out consultancy assignments in a number of business areas that include: - 'Classic' strategic sourcing involving the analysis of ...

CIO50 2008
The silicon.com CIO50 2008 profiles the most influential and innovative tech chiefs in the UK across all industries and organisation size, from the biggest FTSE100 companies to high growth dot-com start ups and the public sector. The list was voted on by the UK CIO community and a panel of experts. Find out more in our latest special report.





Quick Sitemap Links: