Thursday, November 15, 2007

120mb of lures

Hi folks,

This is kind of interesting. Last night, our researchers found an infective, hacked site similar to the .gov that we documented here By itself, that's really common, but the neat thing about this was that it was all open and readable, and we were able to download all the lure files.

That turned out to be a stunning 1999 files, totaling 120mb of keywords. The idea is that the search bots find and index these pages, and after a week or two, they change the the lure pages out to a simple redirect to a fake codec or an exploit site.

So, this is not earth shattering or anything, but it provides a useful insight into how the Bad Guys set their traps.





Post a Comment

<< Home