Write a proggie that greps about for the malicious code, pull the URL's from them, and automatically append them to a Squid (or other proxy) redirector blacklist, like asqredir as a ferinstance...

cool!...

[ more ]  [ reply ]

I checked other search engines. The same problem has yahoo, msn, alltheweb, lycos etc. Have fun. :)...

[ more ]  [ reply ]

This is actively being exploited at the moment, concerning a remote code injection in Mambo/Joomla installations. The exploit code searches for index.php?option=com_performs via google and uses a bug in performs.php to execute a remote php script.

As far as I know, this vulnerability is not yet fix...

[ more ]  [ reply ]

If Google is receiving (and indexing) an executable file, that means the web server is incorrectly configured and is serving up the binary file instead of executing it. So, this provides us with a means of getting binary only copies of someone's misconfigured CGI apps. But the app won't actually run...

[ more ]  [ reply ]