400,000 Google Video Searches Are Polluted: Report

400,000 search queries on Google Video lead to poisoned results and may lead users to download malicious software. That’s according to a Trend Micro blog post this weekend reported today by The Register. Trend Micro believes this “blackhat SEO poisoning” comes from a group that maintains multiple domains with “keyword-riddled pages” that often appear on […]

Chat with SearchBot

400,000 search queries on Google Video lead to poisoned results and may lead users to download malicious software. That’s according to a Trend Micro blog post this weekend reported today by The Register.

Trend Micro believes this “blackhat SEO poisoning” comes from a group that maintains multiple domains with “keyword-riddled pages” that often appear on top of the search results. When users click through to one of these domains, the problems begin:

“… instead of legitimate videos researchers found some 400,000 queries returning video results that have a single redirection point, and one that eventually leads to malware download and execution.

Trend Micro detects the malicious executable as WORM_AQPLAY.A. This worm – file name FlashPlayer.v3.181.exe and from that alone one can already guess the social engineering strategy – spreads via removable and network drives when autorun is enabled. It masquerades as an Adobe Flash installer, which users who visit certain spoofed versions of video streaming websites are prompted to download and install.”

Trend Micro says only searchers coming from Google Video to these domains are prompted to download the malicious Flash installer file.


Contributing authors are invited to create content for Search Engine Land and are chosen for their expertise and contribution to the search community. Our contributors work under the oversight of the editorial staff and contributions are checked for quality and relevance to our readers. The opinions they express are their own.


About the author

Matt McGee
Contributor
Matt McGee joined Third Door Media as a writer/reporter/editor in September 2008. He served as Editor-In-Chief from January 2013 until his departure in July 2017. He can be found on Twitter at @MattMcGee.

Get the newsletter search marketers rely on.