Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

Blog spam hawking spyware solutions

Post new topic   Reply to topic    Spyware Warrior Forum Index -> Spam
View previous topic :: View next topic  
Author Message
Junior Member

Joined: 28 Nov 2004
Last Visit: 02 Feb 2006
Posts: 17
Location: Wisconsin

PostPosted: Sun Jul 17, 2005 9:04 pm    Post subject: Blog spam hawking spyware solutions Reply with quote

You might be interested in my recent blog entry. It's something I stumbled upon while looking at latest blogs list at Blogger.com this morning.

My blog about it is here:


And this is what it says:

Here's a stunning example of Blog spam hawking virus, spyware, malware 'solutions' to paranoid PC users.

Read some of the entries to see how dericulous it is. It's just padding search engine placement with blog entries full of semi-clever keywords and referral links.

Blogger User Profile: Computer Saver -- http://www.blogger.com/profile/9306365
Computer Saver Blogs:
http://antivirus-clean.blogspot.com/ -- Antivirus Clean
http://bug-free-operation.blogspot.com/ -- Bug Free Operation

Where I sit, it looks just like spam.
Back to top
View user's profile Send private message Visit poster's website
Expert Developer

Joined: 27 Jan 2006
Last Visit: 02 Dec 2010
Posts: 1157
Location: yes

PostPosted: Thu Feb 02, 2006 5:59 pm    Post subject: Reply with quote

Interesting post, because it demonstrates a weakness in Blogger's code that could be easily expoited for malicious purposes:
When someone is writing an article, the headline apparently isn't stripped from any html tags. In connection with a free blogging service, an environement that can't be immediately controlled and trusted, people shouldn't have any opportunity to use html tags at all (similar to this forum here). Even worse, since html tags aren't filtered, one could implement Javascript events like onLoad or onClick, that would redirect users via document.location to whereever the spammers wants them to be. This could be an affiliate but also an exploit laden site that will hit them with malware. I've just reported the site to Blogger's abuse team and notified them of the possible js-exploit on that occasion.

Btw: His latest post provoked the feedback of a comment spammer. A spammer getting spammed by another spammer, now that's what I call irony Smile

Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Spam All times are GMT - 8 Hours
Page 1 of 1

Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group