Inside Google's Anti-Malware Operation

[JMH]

A Google malware researcher gave a rare peek inside the company's massive anti-malware and anti-phishing efforts at the SecTor conference here, and the data that the company has gathered shows that the attackers who make it their business to infect sites and exploit users are adapting their tactics very quickly and creatively to combat the efforts of Google and others.

While Google is still a relative newcomer to the public security scene, the company has deployed a number of services and technologies recently that are designed to identify phishing sites as well as sites serving malware and prevent users from finding them. The tools include the Google SafeBrowsing API and a handful of services that are available to help site owners and network administrators find and eliminate malware and the attendant bugs from their sites.

All of these are related to Google's constant crawling of the Web, which, among many other things, allows the company to identify malware-distribution sites as well as legitimate sites that have been compromised with injected malicious code. Attackers have taken to infecting legitimate sites for a number of reasons, one of which is that those sites will show up more prominently in Google search results.

More -
Inside Google's Anti-Malware Operation | threatpost

 

[hexaae]

If all Windows users would use Vista/7 with some brain + UAC (at maximum level!), based on the 'least privileges' principles + sandboxed browser (IE8/9 or Chrome, but IE isolates better also plugins. FFox has no Protected Mode at all) I'm sure the malware and PCzombies/botnets would be reduced by 95%.

 

[wilywombat]

Perhaps the Google malware researcher should look inwards towards Google Street View when talking about anti-phishing !!

 

[Layback Bear]

I am happy that Google is finally getting into the security part of people using there search engine. I do wonder what took them so long.

 

[Dinesh]

Google might make their own Anti virus for Windows.

 

[HammerHead]

Information Repository

Google is an information repository deluxe. Along the lines of Wilywombat's comment, would you let the fox in the coop to watch the chickens. It would really be nice to be trusted to write code to detect and stop malware (adware). Now you could write your own adware (malware) out of the detection code.

Google ............. Pffftt!

 

[Layback Bear]

I get the feeling that some don't trust Google because off their past history. How could that be.:sarc:

 

[wilywombat]

Now lemm see...where do we start?!!!!