Google Warns Users About Active Malware Infection

← Back to Stories (view on slashdot.org)

Google Warns Users About Active Malware Infection

Posted by CmdrTaco on Wednesday July 20, 2011 @12:53AM from the hooray-i'm-clean dept.

dinscott writes "Google has begun notifying its users that a particular piece of malware is installed on their computers by showing a big yellow notification above their search results. The warning begun popping up yesterday, and does so only for users whose computers have been infected by a particular strain of malware that hijacks search results in order to drive users towards websites that use pay-per-click schemes."

3 of 80 comments (clear)

Min score:

Reason:

Sort:

Proxy by mwvdlee · 2011-07-20 01:00 · Score: 5, Insightful

The malware works by redirecting search queries through a proxy. It should be easy for the proxy to just remove the warning or reroute it so Google can't identify the malware.

--
Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
Awesome! by abigsmurf · 2011-07-20 01:07 · Score: 4, Insightful

I bet Malware authors are already copying these messages in order to trick people into installing scareware.
Same as before. by poofmeisterp · 2011-07-20 01:16 · Score: 4, Informative

Flashback, man.
This is almost 100% the same as the last piece of malware I was asked to remove from three peoples' machines over the course of a couple of months.
It was such a pain in the butt because I spent an hour manually cleaning the registry while using a live CD, looking for the newest modified-time files on the machine, looking for installed "Oh-I'm-so-cool" applications, browser extensions, system libs, etc etc etc.....
In the end, I find out that it was cleaned off after my first registry run key deletion session, but the damn proxy was set in both Mozilla and IE to a remote IP. Now, Proxy is one of the first things I check with there's ad-based or redirectional malware reported.
What's next?