Slashdot Mirror

← Back to Stories (view on slashdot.org)

Virus Trackers Find Malware With Google

Posted by ryuzaki0 on from the bug-hunters dept.

Casper the Angry Ghost writes "Malware hunters have figured out a way to use the freely available Google SOAP Search API, as well as WDSL, to find dangerous .exe files sitting on thousands of Web servers around the world. Queries can be written to examine the internals of web-accessible binaries, thus allowing the hunters to identify malicious code from across the internet." From the article: "We're finding literally thousands of sites with malicious code executables. From hacker forums, newsgroups to mailing list archives, they're all full of executables that Google is indexing. About 15 percent of the results came back from legitimate Web sites hijacked by malicious hackers and seeded with executables."

14 of 113 comments (clear)

  1. SOAP? by breckinshire · · Score: 5, Funny
    Google SOAP Search API
    Is there anything that the Snakes on a Plane Search API can't do?
    1. Re:SOAP? by Anonymous Coward · · Score: 1, Funny

      Google SOAP Search API

      Is there anything that the Snakes on a Plane Search API can't do?


      Enough is enough! I've had it with this motherfucking malware on this motherfucking Google!
  2. What Are They Taking About by Anonymous Coward · · Score: 2, Funny

    What is a *.exe? Never seen that kind of file on any of my three operating systems. Good, one thing less to worry about.

    1. Re:What Are They Taking About by Anonymous Coward · · Score: 1, Funny


      $ whatis .exe
      .exe: nothing appropriate

  3. So wait... by Skynet · · Score: 3, Funny

    Google is connecting to the whole Internet to fight a global virus infection?

    MY DAY HAS COME!!! MNMUAUAUAU!

    EXECUTE? [Y/N] _

    --
    Execute? [Y/N] _
  4. Little did you know by neonprimetime · · Score: 3, Funny

    About 15 percent of the results came back from legitimate Web sites hijacked by malicious hackers and seeded with executables

    Little did you know, even /. was hijacked! But the /. masses were not affected because the executables don't run on linux!

    1. Re:Little did you know by yourOneManArmy · · Score: 5, Funny

      Actually, the real reason it was ineffective was because they put the executables in an article link.

  5. This has... by Joebert · · Score: 2, Funny

    ... worlds dumbest criminals written all over it.

    --
    Wanna fight ? Bend over, stick your head up your ass, and fight for air.
  6. Just be careful when clicking the search links... by jbarr · · Score: 4, Funny

    Though it may be obvious to most, if you execute the Google search, don't just start clicking on the returned links, because the links point to virus-infected files. Our Trend Micro Office Scan immediately caught several viruses after clicking on several links...

    --
    My mom always said, "Jim, you're 1 in a million." Given the current population, there are 7000 of me. God help us all!
  7. Hmmmm.... by cdr_data · · Score: 3, Funny

    Does it include NTKERNEL32.DLL in the list?

    Cdr. Data

  8. Re:do no evil, rat out evil by Elemenope · · Score: 2, Funny

    I really have no idea why this was included in the article at all.

    For 'balance'. Duuuuhhh!

    --
    All the techniques ever used to make men moral have been themselves thoroughly immoral... (Nietzsche)
  9. Re:do no evil, rat out evil by BecomingLumberg · · Score: 2, Funny
    Somebody could type in "l337 hax0rs hax" and end up at a malware site.

    You know, in Alaska, they have a joke about how one is goes about hunting Polar Bears.... 'just go out there, they will find you.'

    --
    If a nation expects to be ignorant and free, in a state of civilization, it expects what never was and never will be.-TJ
  10. Re:do no evil, rat out evil by JW.Axelsen.Sr. · · Score: 2, Funny
    Somebody could type in "l337 hax0rs hax" and end up at a malware site.

    http://www.google.com/search?q=l337+hax0rs+hax

    too right, some of the results are humorous

    (2nd page)

    Is Your Son a Computer Hacker - Comments - Page 1
    sooo in other words... i must be a "l337" hacker because as a magic 8ball says ... what Flash really is, or is 75% of all companies of THE WORLD, hax0rs? ...
    www.adequacy.org/stories/hacker.comments.page.1.ht ml - 887k - Cached - Similar pages

    N074H4x0r ... I'm no Hacker
    The B3atles Were Hax0rs. They were singing about SQL Injection, and like encryption and stuff ... I don't sp34k l337, I refer to my friends by their names, ...
    n074h4x0r.blogspot.com/ - 144k - Cached - Similar pages
  11. they're just like .com files by bigtrike · · Score: 3, Funny

    They're similar to the .com files on one of your operating systems, only newer