Hackers Launch Goolag: A Google Vulnerability Scanner
Hackers turn Google into vulnerability scanner from Techworld reports a group of hackers named Cult of the Dead Cow (CDC) launched a search tool powered by Google to help see if your sites are vulnerable to a hacking attempt. The tool is named Goolag, and by typing in a domain name it may return site vulnerabilities.
Techworld reports the tool makes “it easy for unskilled users to track down vulnerabilities and sensitive information on specific Web sites or broad Web domains.” The tool uses the Google Custom Search engine and has a detailed specification on how it works.
“It’s no big secret that the Web is the platform,” said cDc spokesmodel Oxblood Ruffin. “And this platform pretty much sucks from a security perspective. Goolag Scanner provides one more tool for web site owners to patch up their online properties. We’ve seen some pretty scary holes through random tests with the scanner in North America, Europe, and the Middle East. If I were a government, a large corporation, or anyone with a large web site, I’d be downloading this beast and aiming it at my site yesterday. The vulnerabilities are that serious.”