A solution for the spoofed URLs from Google and DoubleClick

June 3, 2008 Leave a Comment

According to CNet, Google will tackle two serious issues. A cross-site scripting issue on the login page of the communication platform Grand Central but more important, well if you receive this type of spam, is the URL spoofing technique that spammers use.

On this blog I have posted, in May, an article about that also DoublClick URLs are being used in spam like Google. As a result, email users click on the URL that appears to direct you to Google.com but instead redirects you to a potential malicious site or an web site advertised by the spammer like an online pharmacy.

“Open URL redirection is an issue we take very seriously. As we become aware of open URL redirectors on google.com, we actively work to close them. We are also aware of redirectors using doubleclick.com and are working to address this issue,” the Google spokesman said.

This sound great. Now it is time for the spammer to develop a new technique. Fingers crossed.

Filed under Spam Tagged with , , , , ,

Double Click ad links used in URLs

May 22, 2008 2 Comments

“Let’s try something new” said one spammer to the other. “I have enough of these Google PageAd links in our spam. I’m going to integrate Double Click this time.”

And yes, we intercept more URLs these days like http://ad.doubleclick.net/click;h=*******http://***.com/redir.html to avoid potential filters and lure drugs bying surfers to the European Pharmany.

The other spammer used Double Click to distibute some malware:
http://ad.doubleclick.net/click;h=*******http://***.es/video.exe with the promise that you can see a Britney and Paris lesbian video. The malware is known as the Trojan.Downloader.Exchanger.bc.

Oh, well, no video tonight I guess.

Filed under Spam Tagged with , , , , , ,

Follow

Get every new post delivered to your Inbox.

Join 108 other followers