Newsletters Welcome, Guest Log In | Register
Blogs:

Carl Weinschenk

Data and Telecom

Companies’ communications strategies must be agile in a rapidly evolving market

About this Blogger RSS

< Previous | Next >

Subscribe

Sign up now and get the best business technology insights direct to your inbox.

  • Daily Edge
  • CTO Edge Update
  • Business Tools & Templates
  • Aligning IT & Business Goals
  • Maximizing IT Investments

0

Careful Developers Don't Have to Pick Their Poison

Posted by Carl Weinschenk Mar 31, 2008 1:50:10 PM

The back-and-forth between crackers and good guys played out during March through the ominous-sounding "SEO poisoning" exploit. Independent security consultant Dancho Danchev has been tracking what appears to be a massive assault on Web sites that has evolved over the past several weeks.

 

Danchev -- who is quoted, referred to or paraphrased in just about every story on the topic -- offers insight at his blog that quickly becomes a bit complex. It is important to note that this type of attack isn't new. In the world of cracking, little-used or even just theoretical exploits exist in the background and suddenly gain favor among criminals.

 

George Hulme at InformationWeek offers a good explanation of the situation. The exploit takes advantage of iFrames. In an iFrame, a sector of a Web page has separate HTML components from the rest of the page. It is, in essence, a page within a page. Sites often use iFrames to collect information from visitors. This can be set up in a number of ways, and some less-than-careful coders leave openings for crackers. If one fills gibberish in the field asking for the Social Security number, for example, a properly written site notes that something is amiss and asks the visitor to resubmit the information.

 

Many sites are not well put together, of course. A poorly written site, Hulme says, can momentarily lose its bearings when confronted with, for instance, symbols and letters if it is only programmed to recognize numbers. In such cases, it may be possible for the cracker program to upload a Trojan Horse to the site during this brief period of confusion.

 

Danchev says the exploit has evolved and now some of the highest-profile sites on the Internet -- a list is included at the link -- are under attack. Many of the reports say Google is filtering its results to delete links to infected links. Larry Dignan at ZDNet comments that it will be interesting to see whether the crackers or Google do a better job of scaling as the attacks grow.

 

A lot of this quickly becomes difficult for non-coders and non security experts to understand. The bottom line is clear, however: SEO poisoning is a threat only if the site is poorly written. Managers must insist on best-practice procedures that preclude preventable problems such from creating massive woes.

Related Content

Add a comment Leave a comment on this blog post.

There are no comments on this post

Related Content

Browse

Topic: Network Security

Protect and preserve your network, your data and the life of your business

Blog: Communicating E-Commerce Security Efforts with Consumers

Article: NSF Problem Proves Basic Content Filtering No Longer Enough

White Paper: Bullet-Proofing Instant Messaging

Related Topics

Google, Web Site Design

Featured White Papers

Browse

Should You Install Messaging Security Software on Your Exchange Server?

This white paper discusses the detailed results of an Osterman Research survey on messaging security software and conclusions about administrators' attitudes regarding installing third-party software on the Exchange server.

Web Security SaaS: The Next Generation of Web Security

This white paper describes the next generation of Web security and identifies the critical elements that make for lower-cost and easier-to-manage Web security solutions.

Resource Centers

Browse

Data Loss Protection

Data-loss prevention tactics, technologies and best practices to protect your sensitive and valuable company data.

Featured Whitepapers

Realizing Enhanced Productivity and Timely ROI from Your DLP Security Technology

Security Information and Event Management

Best practices, strategies and technologies to help you use security information and event log management efficiently and effectively in order to get business value in terms of increased security, reduced risk, regulatory compliance and increased business agility.

Featured Whitepapers

The Top Ten Insider Threats and How to Prevent Them

Security SaaS Solutions

Hosted security solutions that not only protect your data, but reduce your security management TCO, as well.

Featured Whitepapers

Why Security SaaS Makes Sense Today

Premium Tools

Browse

IT Security Manual Template

Immediately download a customizable set of documents and templates that covers every aspect of IT Security. These templates are compliant with ISO27000, HIPPAA and Sarbanes oxley standards.

Learn more >

The IT Governance and Compliance Toolkit

This Toolkit is a collection of templates and instructional documents that help you assess and establish the crucial policies that you need to operate a secure and compliant IT organization.

Learn more >