December 4, 2007 9:08 AM PST
Google calls for users to report malicious sites
- Related Stories
Exposing software flaws--no easy jobJune 7, 2007
Google: 10 percent of sites are dangerousMay 15, 2007
Web threats to surpass e-mail pestsApril 24, 2007
Web attackers get better at hidingApril 18, 2007
- Related Blogs
Dangerous Web sites, strings attached
June 19, 2007
A dangerous conflict of interest between Firefox and Google
November 1, 2007
According to the Google security blog, the search giant already knows about hundreds of thousands of "bad" Web sites but is hoping that its users will add to the list by completing an online form to report malicious sites that are not already flagged.
The fight is important to Google because sites containing malicious software endanger the search giant's reputation by exploiting and infecting its users. This was described recently in a blog by security company Sunbelt.
Last year, Google started flagging sites listed in its search results that contain malicious software. When a bad site is selected, instead of being sent to the site, the user is shown a message saying, "Warning--the site you are about to visit may harm your computer!" Users then have the option to continue or return to the search page.
Google "independently checks the Web for badware and badware-linking code...using its own test procedures," according to StopBadware.org, which is working together with Google in its fight against malicious Web sites.
This is nothing new for security company McAfee, which already trawls the Web for sites hosting malicious software and has members of the public reporting bad sites to McAfee SiteAdvisor.
Google's flagging of bad sites is not nearly as comprehensive as SiteAdvisor, according to a McAfee representative.
SiteAdvisor sits in the browser and ranks all sites as red, yellow, or green. These are ranked via information on whether the site hosts malicious software; whether it is a spamming site, where entering your e-mail address could result in thousands of spam e-mails; whether the site is linked to sites hosting malicious software; or whether it is a scamming site, where some form of money scam is conducted.
In addition, if a user enters the URL of a rated Web site at SiteAdvisor, detailed information on the tests run and reasons for ranking the site are displayed. This helps a user decide whether he or she can still make use of the site while avoiding its bad elements.
According to McAfee, SiteAdvisor downloads are "running into the tens of millions."
Suzanne Tindal of ZDNet Australia reported from Sydney.
15 commentsJoin the conversation! Add your comment