A Trojan has been discovered on the web hosting servers of the world-renowned Internet search provider – Google.
Google Pages is a new service from Google that allows users to create their own web pages.
A malicious attacker uploaded this harmful file to Google’s web hosting service Googlepages.com, according to Dan Hubbard, the director of security research at Websense Security Labs.
The aforementioned Trojan quietly resides on the user’s web hosting system and only activates when they log into an online banking website, aiming to steal their personal information by recording keystrokes, Websense reported.
Although Websense has detected the presence of this Trojan on Google Pages’ servers, it has not yet received reports of phishing emails or instant messages sent to lure users into clicking on harmful links or downloading dangerous files.
“Although this is a zero-day security threat, the level of danger is not high,” Hubbard stated. “However, it involves a major name in the global Internet landscape, which is why it has attracted the attention of security firms.”
Google confirmed that they will address the issue promptly.
“Google Page Creator allows users to upload and store files for their own websites. We are aware that some users have uploaded harmful files. We have quickly removed those websites,” a Google spokesperson said. “We are working on finding a long-term solution to combat such threats. Nevertheless, we encourage users to continue reporting to us whenever they discover a harmful file hosted on our servers.”
Recently, Google’s social networking service – Orkut – was also attacked by a new type of computer worm. The worm MW.Orc also aimed to steal users’ personal account information.
Hoang Dung
