Spammers bypass spam filters with Google Translate links
Posted on 29 March 2013.
Google Translate is the latest trick in spammers' arsenal for bypassing email spam filters, warn Barracuda Labs researchers.


Spam filters work by evaluating (among other things) the reputation and the destination of links included in emails, so spammers are attempting to bypass the filters by making the first "jump" to a instinctively trustable Google domain, and then to a poorly maintained URL shortener.

"Clicking on the link sends us to Google translate. Google translate fetches the shortened URL and follows it to playandstudy.org, a hacked wordpress-based website in France. Playandstudy.org returns Russian text that translates to "Redirected to the requested page..." and Google translate displays that on its page in an iframe," the researchers explained.

The attack ends up with the user finally being redirected to a rogue pharmacy site.

The researchers point out that the trick does not work all the time, making them believe that Google may be implementing code that defeats "framebusting". In any case, users are advised not to inherently trust similar links, especially when they are delivered in unsolicited emails.









Spotlight

eBook: Cybersecurity for Dummies

Posted on 16 December 2014.  |  APTs have changed the world of enterprise security and how networks and organizations are attacked. These threats, and the cybercriminals behind them, are experts at remaining hidden from traditional security while exhibiting an intelligence, resiliency, and patience that has never been seen before.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Wed, Dec 17th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //