Google the Focus of Security Attacks

Several new security attacks are focused on using Google, Inc.'s highly available and used services to either launch attacks or be used as a mechanism for delivery of malware and viruses. In other news, an alliance has been formed to focus on Web 2.0 security issues.

Focal Points

• A recent published report has shown that spammers are able to mask their intentions by establishing thousands of separate Google accounts. This activity is preventing their actions from being caught by anti-spam filters. In another method, legitimate links to products are using links from legitimate domains using Google Page Creator. This legitimate registered site then simply redirects users to the spam site that is blocked. This technique is used by both spammers and hackers that create malware. Most spam blockers do not block access to Google services, so this technique is being increasingly used to redirect spam traffic.
• In another form of Google-based security threats, researchers have found that hackers have put malicious software in over 40,000 Web pages that are known to come up when searching for things with innocuous and common search terms. The infected computers form a botnet that links various sites in areas such as spam in the blog-comment area of a page. The effect of the botnet infections makes it more likely that these sites will appear at the top of Google searches that are done. The malicious sites, when clicked on, often have the ability to launch attacks against the user's computer. This form of attack has given hackers the ability to place attacks against a mass end user audience. Executives from Sunbelt Software have said Google knows about and has started to block this attack.
• The Secure Enterprise 2.0 Forum recently held its first conference in London. It has attracted Fortune and Global 500 executives as well as security experts to promote awareness of security issues related to Web 2.0. Officials stated that the Forum wants to establish best practices and standards around the use of this technology. The Forum is trying to proactively anticipate future threats targeted at Web 2.0 technologies, recognizing that they are starting to be adopted across a large number of enterprises. Technologies to be focused on include widget use, really simple syndication (RSS), social networks, blogs, wikis, and other new Web-based functions.

Experton Group believes security attackers will continue to stay in front of security experts trying to find and stop malicious activity. New organizations such as Secure Enterprise 2.0 Forum are a good start for enterprise IT executives to take a more proactive approach to understanding how new technology vectors can be exploited for future attacks. In addition to these actions, IT executives need to work more closely with security staff to establish security-aware application development methodologies, as well as increasing the level of security awareness and education for all employees.