Topic: Hackers Create 200 000+ Malicious Pages Each Month

[Samker]

Hackers create 200 000+ new web pages every Month in a bid to infect web users with malicious software, says PandaLabs: http://pandalabs.pandasecurity.com/

The research arm of security firm Panda Security revealed that on average 375 keywords or brands are hijacked every week and used in the URLs of these malicious web pages.

Furthermore, 65 percent of these fake websites are designed to look like they belong to banks while 27 percent hope to fool web users into thinking they're part of online auction sites including eBay.

PandaLabs also said 2.3 percent of the remaining hoax websites were posing at sites from other financial institutions (such as investment funds or stockbrokers), while 1.9 percent were created to look like government organizations.

The remaining malicious sites comprised fake payment sites such as Paypal, sites designed to look like they are connected to ISPs and gaming sites.

Panda said that when web users search for these brands and keywords, a link to the malicious website will appear among the results returned. When a web user visits these malicious sites malware will either be downloaded onto the user's computer, or the website spoofs the appearance of a genuine page and fools users into entering their details.

"The problem is that when you visit a website through search engines, it can be difficult for users to know whether it is genuine or not," said Luis Corrons, Technical Director of PandaLabs,

"For this reason, and given the proliferation of this technique, it is advisable to go to banking sites or online stores by typing in the address in the browser, rather than using search engines."

(PCW)

[AllSecurityUp]

"For this reason, and given the proliferation of this technique, it is advisable to go to banking sites or online stores by typing in the address in the browser, rather than using search engines."

(PCW)

This something that is if often overlooked, yet something everyone should do as even bookmarks can potentially be corrupted.

IE8 has that great feature (dy default) of highlighting the domain in the address bar.

I often think that URL knowledge should be part of Security101 so that typing and recognizing domain names is more common.

[Samker]

IE8 has that great feature (dy default) of highlighting the domain in the address bar.

I agree, very useful improvement. 

 

[Fintech]

I was Panda labs Internet Security 2010! I won it from here in June 2010

Now it's Internet Security 2011 because they send me a new serial (activation code ) AND

ask me to download and install this new version I have been rather contented about it at least for the time being. 

[Samker]

I was Panda labs Internet Security 2010! I won it from here in June 2010

Now it's Internet Security 2011 because they send me a new serial (activation code ) AND

ask me to download and install this new version I have been rather contented about it at least for the time being. 

Great News... Panda deserve Karma Up...    Hope you like version 2011. ??



by the way, We are starting New Contest "Panda Security & SCF" from 15.09. with great and very valuable Awards.

[grr]

Most of the time we do not remember  address of banks, etc and google them.
I think search engines should validate the results at their end before showing to the users.

btw thanks for the Panda Security contest. I'm looking forward for it.

Thanks,
Grr

[krrjhn]

Thanks its a very knowledgeable post !!