Google Crowned ‘King Of Malware’

Brian Prince eWEEK USA 2014. Ziff Davis Enterprise Inc. All Rights Reserved,
time

Google distributes more malware than any other search engine – more than twice the amount of Bing, Twitter and Yahoo! combined

New malware research from Barracuda Networks highlights the challenge facing Google, Bing and other search engines.

In its Barracuda Labs 2010 mid-year Security Report, which the company will present in Las Vegas at DefCON 18 later this week, Barracuda analysed more than 25,000 trending topics and nearly 5.5 million search engine results across Google, Bing, Twitter and Yahoo during a period of roughly two months.

Overall, Google leads in malicious search engine results, “turning up more than twice the amount of malware as Bing, Twitter and Yahoo combined when searches on popular trending topics were performed,” Barracuda said on 28 July.

Poisoned search results

“Google was the top source for malware primarily because of its market share,” explained Paul Judge, chief research officer at Barracuda. “Google has over 60 percent of the search market share. This is similar to how Microsoft’s operating system has been known to be more targeted by attackers over the years because of its market share.”

The problem of poisoned search results is an old one for Google, which has told eWEEK in the past that it scans web pages for malware and posts warnings in its search results when malicious content is found. In addition, many rogue sites get removed from search results altogether.

“Users should realise that they must still be wary of suspicious activity even from seemingly legitimate sites,” Judge said. “Also, users should install some form of URL filtering or web security product either on their computer or at the gateway of their network. Many of these attacks could be identified with existing technologies but people need to at least use any one of those technologies in order to be protected.”

The dark side of Twitter

The company also assembled data on Twitter users “to model normal behavior,” information that could be used to identify illegitimate users. What Barracuda found was, “Half of Twitter users tweet less than once a day, yet one in 10 tweet five or more times a day and 30 percent of Twitter accounts have never tweeted.”

“There are three things a user can do on Twitter: follow, be followed or tweet,” Judge said. “So we define a true Twitter user by those three main attributes: has at least 10 followers, follows at least 10 people, has tweeted 10 times – to give us a baseline. Then we took our sampling (25 million Twitter accounts, about a fourth of the network) – and applied those parameters to it – [reaching] 28 percent for the first half of 2010, which is up from 21 percent from June to December 2009.”

The report can be downloaded here. (PDF)