February 11th, 2008 | by Panayiotis Mavrommatis | published in Google Online Security
Written by Niels Provos, Anti-Malware TeamIt has been over a year and a half since we started to identify web pages that infect vulnerable hosts via drive-by downloads, i.e. web pages that attempt to exploit their visitors by installing and running mal…
November 29th, 2007 | by Niels Provos | published in Google Online Security
Posted by Ian FetteWe’ve been targeting malware for over a year and a half, and these efforts are paying off. We are now able to display warnings in search results when a site is known to be malicious, which can help you avoid drive-by downloads and ot…
October 8th, 2007 | by Panayiotis Mavrommatis | published in Google Online Security
Written by Chris Evans, Security TeamGoogle encourages its employees to contribute back to the open source community, and there is no exception in Google’s Security Team. Let’s look at some interesting open source vulnerabilities that were located and …
September 17th, 2007 | by Niels Provos | published in Google Online Security
Posted by Will Drewry, Security TeamSecurity testing of applications is regularly performed using fuzz testing. As previously discussed on this blog, Srinath’s Lemon uses a form of smart fuzzing. Lemon is aware of classes of web application threats a…
July 16th, 2007 | by Panayiotis Mavrommatis | published in Google Online Security
Posted by Srinath Anantharaju, Security TeamCross-site scripting (aka XSS) is the term used to describe a class of security vulnerabilities in web applications. An attacker can inject malicious scripts to perform unauthorized actions in the context of …
July 9th, 2007 | by Niels Provos | published in Google Online Security
Posted by Niels Provos, Anti-Malware TeamSome of you might have seen this message while searching on Google, and wondered what the reason behind it might be. Instead of search results, Google displays the “We’re sorry” message when we detect anomalous …
June 18th, 2007 | by Niels Provos | published in Google Online Security
Posted by Brian Rakowski and Garrett Casto, Anti-Phishing and Anti-Malware TeamsOK, so it might be a little early to declare victory, but we’re excited about the Safe Browsing API we launched today. It provides a simple mechanism for downloading Google…
June 11th, 2007 | by Niels Provos | published in Google Online Security
Posted by Colin Whittaker, Anti-Phishing TeamIn addition to targeting malware, we’re interested in combating phishing, a social engineering attack where criminals attempt to lure unsuspecting web surfers into logging into a fake website that looks like…
June 5th, 2007 | by Niels Provos | published in Google Online Security
Posted by Nagendra Modadugu, Anti-Malware TeamIn this post, we investigate the distribution of web server software to provide insight into how server software is correlated to servers hosting malware binaries or engaging in drive-by-downloads.We determ…
May 29th, 2007 | by Niels Provos | published in Google Online Security
Posted by Tavis Ormandy, Security TeamFollowing Panayiotis’ and Niels’ post on malware, I’d like to discuss a somewhat related topic, virtualisation. Virtual machines are often used by security researchers to sandbox malware samples for analysis, or to…
May 21st, 2007 | by A Googler | published in Google Online Security
Posted by Panayiotis Mavrommatis and Niels Provos, Anti-Malware TeamOnline security is an important topic for Google, our users, and anyone who uses the Internet. The related issues are complex and dynamic and we’ve been looking for a way to foster …