Has the Google redirector been hacked?

My Sister was searching for a local Chinese place called Hunan of Solon in Internet Explorer and started getting popup ads from it.  I was sure it was something she downloaded but nothing appeared to be out of the ordinary on her PC.  I tried it on my Mac and upon clicking the link in Google I was redirected to a Spyware Program.  This is very scary because it works on the URL when searching on Google!  The problem does not present itself when you type in the correct URL for the site.

Here is a video of the redirection in progress vs. typing in the correct url directly.

Has Google’s redirection service been poisoned?

Hi Res Video Download is HERE

Posted on August 1st, 2008 by Furious Citizen
Filed under: Industry News, Technology

2 Responses to “Has the Google redirector been hacked?”

  1. chmod007, on August 1st, 2008 at 3:00 am Said:

    The site shown contains this obfuscated exploit code:

    window.status=’Done’;document.write(”)

    The payload at 58.65.232.33, likely checks for a Google referrer, and only runs the malware if it is found, in order to increase its stealthiness.

  2. admin, on August 1st, 2008 at 3:03 am Said:

    Good find! Any idea on how the site in question became infected with this?

Leave a Reply

You must be logged in to post a comment.

« »