Interested in getting porn and malware?Go to the Microsoft Safety and Security Center

Status
Not open for further replies.
Jack

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,378
The Microsoft Safety and Security Center has become a hot bed of porn redirects, and sleazy porn sites invariably lead to malware.

And there’s an interesting twist to how this occurred. Search poisoning, on its own, is no big deal. But in this case, something else is going on.

Since we’re a (sort of) PG 13 blog, I’ll give a mundane example: A person goes to the Microsoft Safety and Security center and types in “girl” in search box.

[attachment=592]

The search results have been poisoned. Even an innocous search such as this one returns nasty results

[attachment=593]

Interesting SEO blackhatting: Why is this different? Normal search poisoning is where results come up that directly link to a site. However, blackhat SEOs have created Microsoft Security Center search results on specific terms. These terms include things like: porn,you porn,free porn,free filipino porn video,prnhub,streaming,you tube sex.

Since only specific terms are used, if you search using a different term, say “united nations”, you’ll get real, normal results.

In other words, blackhat SEOs are seeding illegimate search results within the Microsoft search results. Pretty tricky and impressive. There are a number of ways this could be done (for example, using the ability on the site to Twitter a search result).

Confused? You don’t need to be. Just know that inevitably, these types of things can lead to malware.

[......]

Read more
Click to expand...
 

Attachments

  • microsoft12q3812340982934928348.png
    microsoft12q3812340982934928348.png
    98.3 KB · Views: 581
  • microsoft12q3812340982934928348a.png
    microsoft12q3812340982934928348a.png
    99.1 KB · Views: 552
V

Vextor

This is just...
You know, I'll let everyone else say that because Microsoft should be doing something about this monstrous results inside the SECURITY section of the Microsoft website.
 
jamescv7

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
That rebranded Bing search was very low detection rate in AV's. And interesting that MSSC was having a poisoned search powered by Bing. Try to type like in that blog and it was returned as normal search.
 
Jack

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,378
The technique involves compromising legit websites and creating pages under their domain that are filled with popular search keywords.

Attackers then use other hacked websites to link back to the pages, therefore increasing their search result standing for the targeted terms.
Click to expand...

This is a very interesting way to poison a search but who in the right mind would go to Microsoft Security Center and search for porn :p.
Right now everything seems to be working just fine, the search button is back on the Microsoft Security Center layout. http://www.microsoft.com/security/default.aspx
 
Status
Not open for further replies.

Similar threads

SeriousHoax
    • Like
Technology Google says Microsoft offered to sell Bing to Apple in 2018, but search-quality issues got in the way
Replies
2
Views
359
Technology News
Jonny Quest
Jonny Quest
silversurfer
    • Like
    • +Reputation
Hackers Using MSIX App Packages to Infect Windows PCs with GHOSTPULSE Malware
Replies
0
Views
557
News Archive
silversurfer
silversurfer
Gandalf_The_Grey
    • Like
Security News Cyber Safety Review Board Releases Report on Microsoft Online Exchange Incident from Summer 2023
Replies
2
Views
1,253
Security News
Practical Response
Practical Response

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top