June 19, 2006 9:34 AM PDT

Trojan targets Google hosting service

A Trojan horse has been discovered in Google Pages, a Web site hosting service offered by the search giant.

An attacker apparently uploaded a malicious file to a Googlepages.com server, part of a service that allows people to create their own Web pages, said Dan Hubbard, the senior director of security research at Websense Security Labs. The Trojan could lie dormant on a user's system until the individual logs on to a banking Web site and then attempt to steal his or her personal information by capturing their keystrokes, according to a security alert released Friday by Websense.

Although the security monitoring company has detected the presence of the Trojan horse on Google Pages, it has not yet received any reports of bogus e-mails or instant messages that attempt to lure users to click on malicious links or download dangerous files.

"This is not a high-level, zero-day type of threat," Hubbard said. "But when you have this big of (an Internet site) name involved, security researchers tend to look at it."

Google said it is moving as quickly as possible to deal with the problem.

"Google Page Creator enables users to upload and serve files on their Web site. We understand some users are hosting and serving malicious files, and we are removing these Web pages when notified," a Google spokeswoman said in an e-mail. "We are working on a more permanent solution to guard against these malicious efforts. However, we encourage users to continue to notify us when they encounter sites that host or serve malicious files."

Last week, Google's social-networking site, Orkut, was hit with a new worm. That worm, MW.Orc, also sought to steal online banking information from computer users.

See more CNET content tagged:
Websense Inc., Google Inc., banking, trojan horse, security

2 comments

Join the conversation!
Add your comment
article root
article root
Posted by Drewzilla (19 comments )
Reply Link Flag
Google isn't the only place
Google isn't the only place that's being targeted by pesky Trojans, especially as of lately. As if the web giant wasn't big enough, another Trojan caused names, addresses and social security numbers of Oregon Department of Revenue employees to be forwarded to an unknown destination.
<a class="jive-link-external" href="http://www.iwantmyess.com/?p=67" target="_newWindow">http://www.iwantmyess.com/?p=67</a>

It is surprising that with this infectious epidemic, these organizations aren't being more proactive in securing not only their users, but their own files and information as well.
Posted by ml_ess (71 comments )
Reply Link Flag
 

Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

What's Hot

Discussions

Shared

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.