Your SlideShare is downloading. ×

Search Engine Poisoning via Cross-Site Scripting

364
views

Published on

Search Engine Poisoning attacks manipulate search engines to display search results that contain references to malware delivering websites. There are a multitude of methods to perform Search Engine …

Search Engine Poisoning attacks manipulate search engines to display search results that contain references to malware delivering websites. There are a multitude of methods to perform Search Engine Poisoning attacks, including taking control of popular websites, using the search engines' "sponsored" links to reference malicious sites and injecting HTML code. In this episode of "Anatomy of an Attack," we focus on the latter method where the returned search results contain references to sites infected with Cross-Site Scripting (XSS). The infected Web pages redirect unsuspecting users to malicious sites. When unsuspecting victims follow one of these references, their computers become infected with malware. This technique is of particular importance since it does not require the attacker to take over, or break into any of the servers involved in the scheme.

Published in: Technology

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
364
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide