April 27, 2005 8:51 AM PDT

Scheme preys on people who mistype 'Google.com'

By Matt Hines
Staff Writer, CNET News

Share
- Digg
- Del.icio.us
- Reddit
- Facebook
Email
Print

Related Stories: Google tests out blog ad service
April 26, 2005; Google search gets personal
April 20, 2005; Mozilla flaws could allow attacks, data access
April 18, 2005; Bigger phishes ready to spawn
April 13, 2005; Site-blocking worm carries phishing risk
April 11, 2005

Security researchers have discovered an attack aimed at would-be visitors to Google.com, one that attempts to download malicious programs onto the computers of people who simply mistype the search giant's Web address.

According to security specialist F-Secure, unsuspecting Web surfers may be bombarded with various types of Trojan horse threats, spyware and backdoors when they go to "Googkle.com." The scheme is meant to take advantage of sloppy or hurried typists, given that on most keyboards the letter "k" key sits next to the "l" needed to type "Google."

Google representatives said the company had no comment on the matter for the time being.

In the past, the company appears to have made moves to protect its users against mistyping errors. If a person puts an extra "o" in Google's URL, they are simply redirected to the company's homepage. On the other hand, if someone mistakenly adds a fourth "o" to Google, they are directed to USseek.com, a Web portal that offers pop-up advertising for an online casino.

In an advisory, F-Secure strongly advises people not to go to Googkle.com. People who do so will see two pop-ups linked to Web sites that install the Trojan programs. One of the programs is a phishing-style Trojan that attempts to garner individuals' online banking information, while another drops phony antivirus alerts on the victim's desktop that attempt to lure people to other infected Web sites.

While relatively low-tech in terms of its social engineering, the URL mistype attack is an approach that has long been incorporated by many different kinds of Internet opportunists, from legitimate companies trying to steal traffic from their rivals or simply piggyback on the success of larger companies, to criminals looking to misrepresent themselves and trick consumers into handing over personal data.

In one of the most famous instances of URL deception, the site hosted at Whitehouse.com for several years was an advertisement for pornography, not a link to the office of the president, whose official site is Whitehouse.gov.

See more CNET content tagged:
trojan horse, online banking, F-Secure Corp., Google Inc., security

Add a Comment (Log in or register) 41 comments (Showing first 20 comments)

trojans?
by April 27, 2005 9:50 AM PDT: Sheesh, get a Mac. Unbelievable that your OS wouldn't protect you any better...; Reply to this comment View all 2 replies
Processing

Or if you want a computer...
by sanenazok April 27, 2005 10:37 AM PDT: just install Firefox. The reason why there's no trojans for macs is because trojans exist to get people's information - so you need a large number of USERS. Oh and they need to have bank accounts.; Reply to this comment View all 2 replies
Processing

Enjoyment is a two-way street
by sanenazok April 27, 2005 1:42 PM PDT: There's a difference between an OS and a browser, did you hear about that? It's not Windows that gets infected, but rather IE, and only if you let it. There are security holes and viruses for the Mac, it's just nobody bothers to distribute them, because they won't run on PC's. Duhhh; Reply to this comment View all 3 replies
Processing

Nope. Using Firefox with the new popup extension
by Jonathan April 27, 2005 1:45 PM PDT: Oh you are talking about the idiots still using IE. Sorry.; Reply to this comment View all 3 replies
Processing

i support googkle
by Sam Papelbon April 28, 2005 9:20 AM PDT: so long as it helps rid the internet of people who can't spell. especially a simple word like google. now if the website in question was electroencephalogram.com or floccinaucinihilipilification.net then i suppose i'd see it as a problem; Reply to this comment View all 3 replies
Processing

A Rose by any other name....
by sanenazok April 28, 2005 10:26 AM PDT: It's straight from Symantec, you have to look beyond the name.

Remember, don't judge a book by its cover.; Reply to this comment

How is this Even LEGAL??
by April 29, 2005 9:16 AM PDT: I don´t get it. How is this even legal? and if so why do we let stuff like this exist! I am so sick and tired of having to deal with viruses,trojans and spam. There should be heavy laws against this stuff with serious jail time!!! Everyone complains, you see it on CNN, but the end result is nothing. Why do we give free reign to these theives??; Reply to this comment View all 3 replies
Processing

Site is already down
by Gerald Quaglia April 29, 2005 9:35 PM PDT: Checked it out, with my mac of course!; Reply to this comment

See all 41 Comments >>

Latest tech news headlines

Microsoft adding to its Labs collection
Posted in Beyond Binary by Ina Fried

September 5, 2008 12:26 PM PDT
Security Bites 113: The security of Chrome
Posted in Security Bites podcast by Robert Vamosi

September 5, 2008 12:15 PM PDT
Are Demo and TechCrunch50 fragmenting their audiences?
Posted in News - Gaming and Culture by Daniel Terdiman

September 5, 2008 12:01 PM PDT

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Inside CNET News

Scroll Left Scroll Right

News - Business Tech
Samsung contemplating SanDisk acquisition
South Korean consumer electronics giant is considering a buyout of the chipmaker to reduce its NAND flash memory costs, according to PaidContent.
Gallery
Photos: Ron Paul's RNC alternative
As the Republican convention took place just miles away, a crowd rallied for the former presidential candidate and his message of limited government, ensured civil liberties, lower taxes, and peace.
The Open Road
Analysts as a lagging indicator of success
Gartner, Forrester, and other analyst firms tend to be great predictors of the past, probably because that's where they get their money.
Beyond Binary
What's McCain doing in front of my junior high?
Speculation has it that it was a goof-up that had the Republican nominee standing in front of Walter Reed Middle School during his acceptance speech. In any case, the image brings back memories for CNET News' Ina Fried.
Video
YouTube plays party politics
During the presidential campaigning four years ago, YouTube didn't even exist. Now it's a tool candidates must master to get their message across. CNET's Kara Tsuboi stops by the YouTube upload booths at the Democratic and Republican conventions to find out why Google's video site has such a big presence in Denver and St. Paul, Minn.
News - Digital Media
Week in review: Google's Chrome shines
Web giant makes long-awaited foray into browser market, while the mobile market warms up. Also: Tech goes to Republican National Convention.
Video
Political party playlists
We know the Democrats and Republicans are split over policy issues, but does their musical taste fall down party lines too? And what kind of gadgets did they bring to the conventions to listen to their music? CNET reporter Kara Tsuboi finds out.
News - Gaming and Culture
Are Demo and TechCrunch50 fragmenting their audiences?
With both events scheduled to start Monday, many press, as well as venture capitalists and others are having to choose which one to attend.
News - Cutting Edge
Execs predict next Google-like tech
On eve of company's 10-year anniversary, researchers and business pundits speculate about what technologies might someday have as much impact as Google.
Gallery
Photos: The brains behind Google Chrome
Here's a look at some of the engineers and executives who took the stage at the company's headquarters as they unveiled the new browser.
Crave
Lenovo external hard drive responds to touch
A new concept hard drive from Lenovo shows its capacity when touched.
Green Tech
Duke Energy to invest in mini solar power plants
Can hundreds of rooftop solar panels collectively operate like a central power plant? Duke Energy launches $100 million distributed solar program to find out.