BitDefender Detects New Trojan that Hijacks Google Text Advertisements; Cuts into Google Revenues

18 dicembre 2007

New ad-hijacking trojan replaces Google's ads with ads from a different provider

The modified file contains a line redirecting the host "page2.googlesyndication.com" which should point to an IP of the form 6x.xxx.xxx.xxx to a different address, of the form 9x.xxx.xxx.xxx, so that the infected machines' browsers read ads from server at the replacement address rather than from Google.

"This is a serious situation that damages users and webmasters alike," said Attila-Mihaly Balazs, a BitDefender virus analyst. Users are affected because the advertisements and/or the linked sites may contain malicious code, which is a very likely situation, given that they are promoted using malware in the first place. Webmasters are affected because the trojan takes away viewers and thus a possible money source from their websites.

Users are advised to let BitDefender software delete the trojan. For further details on the ad-hijacking trojan, please visit BitDefenders Defense Portal site at: http://www.bitdefender.com/site/VirusInfo/realTimeReporting/.

Contatti

UFFICIO STAMPA
[email protected]
RELAZIONI CON GLI ANALISTI DI SETTORE
[email protected]
RELAZIONI CON GLI INVESTITORI
[email protected]