Hackers have set up malicious websites designed to infect the Windows boxes of surfers who mistype the name of popular search engine Google.com. If a user opens one of the malicious websites, such as googkle.com¹, his PC box may be hijacked with malware including Trojan downloaders, backdoors and spyware.

Finnish anti-virus firm F-Secure reports that the site launches multiple pop-up Windows that lead to other sites harbouring malicious scripts. These scripts exploit a variety of vulnerabilities to automatically download code onto vulnerable boxes. Users are advised to keep their browser patches up to date - and to practice touch typing - in order to avoid infection. ®

¹ Common sense should tell you not to visit googkle.com, particularly if you are running Windows on your PC.

Related stories

Hacking Google for fun and profit [1]
Google goes gimpy from MyDoom infection [2]
Latest MyDoom hunts victims via Yahoo! [3]
Bagle variant outstrips Google-bashing worm [4]

Links

1. http://www.theregister.co.uk/2005/04/04/google_hacking/
2. http://www.theregister.co.uk/2004/07/26/google_mydoom_infection/
3. http://www.theregister.co.uk/2004/08/04/mydoom_targets_yahoo/
4. http://www.theregister.co.uk/2004/10/29/bagle_zafi_email_worms/