Some Google Blogger users have been stung with attacks over the past little while, causing disturbing infections. Or is it just a case of the splogs.Malicious hackers have supposedly been successful in gaining access to some blogs and posting fake entries with weblinks that lead to infectious downloads on Windows PC's. A security researcher started noticing the corrupt links turning up in Blogger accounts on August 27th. Since then hundreds of blogs have been reported to contain the malicious links. The researcher could not tell how the links were posted. They could have been posted through a Blogger exploit, through a feature that lets users email an entry, or the blogs could have been also set up solely to host spam and no hacking could have occurred at all.
So far the links appear to pose as YouTube links, others are looking for software testers, and others are links to supposed digital greeting cards. No word from Google on the matter.
Reader Comments (Page 1 of 1)
8-31-2007 @ 2:40PM
Brent said...
It's only happening on splogs as far as I've seen. This story going around the web just makes it harder for the real blogger to be seen as legit. You would know right away if you were on one of those sites as the entries would be very obvious splog entries.
Brent
Reply
9-22-2007 @ 7:44PM
shelly rayedeane said...
If anyone could help me out, I'd sure appreciate it.
Recently, my blog was hacked and all of my passwords reset for my yahoo, msh hotmail account and blogger, and my blog is now hijacked. Not only did this happen to me, but I think I have found the culprit and would like more information on what I can legally do about this.
If you read my blog, you can understand how it happened. Someone, via another blog, installed a trojan on my computer. Ironically, it was another blog which generates a lot of hits. My blog name is The Ballad Of Shelly Rayedeane at the following link and you can also read about my story there:
http://shelly-rayedeane.blogspot.com/
Fortunately, I got in quick enough and got my yahoo email account back the other day. However, now I can't log into blogger anymore because someone else has my password. I'd appreciate an email addy to blogger.com (if someone has it) or, at the very least, answers to how I can get my blog back along with my msn hotmail acct.
Thank you, Shelly
p.s.- I also have IP addresses of the culprits involved who did the hacking.
Reply
11-20-2007 @ 12:15PM
ahoier said...
Nothing new....I dont think it's a "hack" or exploit...Windows users are most likely to be infected by malware/viruses, and one of the payloads of these greeting cards, halloween dancers, funny kittens, etc. greeting cards I believe, is to send messages to every address in the user(s) address book....well, what's more convenient than to have your blogspot e-mail address in your Windows addressbook? :) So, the malware essentially sends the spam link to their blogspot address, posting it to their blog...
I've been reporting these splogs as I find them to http://spamvertised.abusebutler.com/blogspot.php and also "flag" the blog using the header navbar on the blogspot blogs.
There's also a hidden splog report form somewhere on the blogger/blogspot/google domain...but I think Andy over at AbuseButler mass-submits the splog URLs :)
Reply