Google warns 20,000 websites could be infected with malware

Saturday, 21 April 2012 01:40 -     - {{hitsCtrl.values.hits}}

Google has warned 20,000 websites that they might be hacked and injected with JavaScript redirect malware, Google said.



In a message sent this week, Google said that some pages of the website may be hacked. “Specifically, we think that JavaScript has been injected into your site by a third party and may be used to redirect users to malicious sites,” the Google Search Quality team said. The team said files are infected with unfamiliar JavaScript and warned that site owners should search for files containing “eval(function(p,a,c,k,e,r)” in particular. The code may be placed in HTML, JavaScript or PHP files, Google said.

Websites were also warned that server configuration files could have been compromised. “As a result of this, your site may be cloaking and showing the malicious content only in certain situations,” Google said. It emphasised that it is important to remove the malware and fix the vulnerability to protect site visitors. Webmasters were also urged to keep their software up-to-date and to contact their Web hosts for technical support.

It is not the first time Google has warned website owners to look for malware infections, Google spokesman Mark Jansen said in an email. “It’s part of our ongoing mission to be transparent with webmasters and do our bit to help prevent spam,” he said. “In fact this isn’t a new phenomenon; we communicate very openly with webmasters and always have done.”

Google’s anti-malware campaigns can have a big impact. Last July Google excluded more than 11 million URLs from the “co.cc” domain, because they were regularly used by cybercriminals to spread antivirus programs and conduct drive-by attacks. Google explained in a blog post at the time that some bulk providers could host more than 50,000 malware domains, and that it could flag whole bulk domains in severe cases.

 

COMMENTS