Blogger.com, home of the weblog publishing system owned by Google, has been infiltrated by a number of phishing sites, security watchers report.

In some cases, the Stration mass mailer is being used to drive traffic to these fraudulent sites. One such scam is a "storefront" for Pharmacy Express, which redirects from a Blogspot.com (now Blogger.com) link. The site is designed to harvest the personal information of prospective marks.

Beyond the problem of spam and phishing sites, a number of Blogger.com sites have been compromised with malicious code. For example, a blog site seemingly created by a Honda CR450 enthusiast is hosting the Wonka Trojan.

Hundreds of other Blogging sites (covering subjects ranging from Star Wars, school, furniture, Christmas, cars, and girlfriends) are also infected, according to net security appliance firm Fortinet, which has published an advisory highlighting its concerns. ®

Related stories

• Olympic champ's mom sues Google for dead blogger's post (15 April 2009)
• Miscreants subvert search results to punt malware (28 November 2007)
• Storm Worm descends on Blogger.com (29 August 2007)
• Researcher crosses swords with Google over XSS 'flaw' (21 August 2007)
• VXers publish blog poisoning tool (30 July 2007)
• Security consultant's blog found pushing crudware (4 July 2007)
• Google acquires 'sandbox' technology for secure browsing (29 May 2007)
• Blogosphere threatened by Google downtime (16 May 2007)
• Updated eBay users targeted by advanced Trojan (6 March 2007)
• MySpace hackers avoid extortion rap (27 February 2007)
• Updated MSN punts 'scareware' (21 February 2007)
• Script wreaks havoc on MySpace (31 January 2007)