Website hackers hijack Google webmaster tools to prolong infections

Found on IT World on Sunday, 13 September 2015

Hackers who compromise websites are also increasingly verifying themselves as the owners of those properties in Google's Search Console. Under certain circumstances this could allow them to remain undetected longer than they otherwise would be, researchers warn.

If the legitimate owners don't read the notifications and take immediate action, the attackers can actually remove them from the Search Console verification list by deleting their HTML verification files from the server. This will trigger no notifications to the real owners, according to Sucuri senior malware researcher Denis Sinegubko.

Most of those exploited websites exist because people just use standard CMS systems like Wordpress or Joomla and do not bother to keep the system (and all its plugins) updated. Especially plugins give a wrong impression of security if the original author abandoned the project and no more updates are released, despite exploitable bugs.

Browse all articles« Previous « » Next »