[ISN] The Google attack engine

From: InfoSec News (isnat_private)
Date: Thu Nov 29 2001 - 01:00:02 PST

  • Next message: InfoSec News: "[ISN] [defaced-commentary] Attrition Downtime"

    http://www.theregister.co.uk/content/6/23069.html
    
    By Thomas C Greene in Washington
    Posted: 28/11/2001 at 12:25 GMT
    
    Some clever empiricist appears to have been abusing Google to attack
    Web servers, switches and routers in a novel way, by crafting search
    terms to include known exploits. Such a search will occasionally yield
    active Web pages used by administrators. On top of that, a number of
    them have already been cached. It's reasonable to surmise that a
    hacker has been using Google not merely to search for vulnerabilities,
    but as a proxy to hide behind while executing attacks.
    
    [...]
    
    
    
    
    -
    ISN is currently hosted by Attrition.org
    
    To unsubscribe email majordomoat_private with 'unsubscribe isn' in the BODY
    of the mail.
    



    This archive was generated by hypermail 2b30 : Thu Nov 29 2001 - 13:12:54 PST