ie8 fix
madison

Zero Day

Ryan Naraine, Emil Protalinski and Dancho Danchev
Home / News & Blogs / Zero Day

More nasties found on Google Code repository

By | September 13, 2010, 11:50am PDT

Summary: Security researchers are finding more and more malicious things lurking on the Google Code project repository.

Security researchers are finding more and more malicious things lurking on the Google Code project repository.

According to Websense, code for a notorious PHP-based Web console known as “r57shell” has been hosted at Google Code since November 2007, giving malicious hackers a launching pad to control remote shells.

[ SEE: Malware hosted on Google Code project site ]

follow Ryan Naraine on twitter
The Websense researchers found the black-hat toolkit among Trojan files and a text file with a list of more than 50,000 compromised MySpace accounts.

We saw that the Google Code Web site isn’t just used to host malicious files, but is also used to host malicious Web content and tools. Abusing Google’s services isn’t new: with so many offered services as a platform, it follows that attackers will naturally use and abuse it, but it certainly looks like it doesn’t have to be through the back door. Coming though the front one can also be an easy option.

Websense has posted screenshots of the discovery on its blog.

Just last week, another security research firm warned that hackers are using the Google Code repository to host Trojans horses, backdoors and password stealing keyloggers.

The researchers found a malicious project hosted on the free Google Code site with about 50+ malware executables stored in the download section of the project.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

Topics

Google Inc., Researcher, Websense Inc., Malware, Spyware, Adware & Malware, Cyberthreats, Spyware, Viruses And Worms, Security, Hacking, Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues.

Disclosure

Ryan Naraine

The most important disclosure is of my employment with Kaspersky Lab as a member of the global research and analysis team. Kaspersky Lab is a global company specializing in anti-malware and secure content management technologies. I do not own stocks or other investments in any technology company.

Biography

Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content management technologies.

Prior to joining Kaspersky Lab, Ryan was Editor-at-Large/Security at eWEEK, leading the magazine's and Web site's coverage of Internet and computer security issues and managing the popular SecurityWatch blog, covering the daily threats, vulnerabilities and IT security technologies. He also covered IT security, hacker attacks and secure content management topics for Jupiter Media's internetnetnews.com.

Ryan can be reached at naraine SHIFT 2 gmail.com. For daily updates on Ryan's activities, follow him on Twitter.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?
Ask a Question Start a Discussion
33
Comments
Add Your Opinion

Join the conversation!

Just In

RE: More nasties found on Google Code repository
grahamrix 19th Oct
TTT
View in thread
0 Votes
+ -
More reasons not to use Google
iPad-awan 13th Sep 2010
Unless you like having your private data stolen, I can't think of any reason to use Google.
0 Votes
+ -
You should learn the difference between Google and Google code repository
OS Reload 13th Sep 2010
It's never to late to start learning. Yes, I know, the Internet can seem daunting to someone of enters it for the first time but I suppose there are quite a few books explaining it in simple terms to those of you less accustomed to digital devices.

And you can always use the Internet itself to learn more. Here are a few pointers to get you started:

http://en.wikipedia.org/wiki/Internet
http://en.wikipedia.org/wiki/Computer_network
http://en.wikipedia.org/wiki/Keyboard_(computing)

Just browse wikipedia and you'll find plenty of stuff to get you on track.

Happy learning!
0 Votes
+ -
RE: More nasties found on Google Code repository
tonymcs@... 13th Sep 2010
@OS Reload

Thank you. Now who's going to teach an advertising company to do security and development?
0 Votes
+ -
RE: More nasties found on Google Code repository
gogon gondrong Updated - 21st Jul
Microsoft should stop putting half vehicle of the any this is the music of angry that can make perform you to fly steak and also baked
0 Votes
+ -
RE: More nasties found on Google Code repository
bynes69 17th Sep
@OS Reload Amazing one, i appreciate this work....
Essay
Coursework
Assignment
0 Votes
+ -
RE: More nasties found on Google Code repository
bynes69 17th Sep
@OS Reload Great informative post thanks for sharing.....
Dissertation
Thesis
0 Votes
+ -
RE: More nasties found on Google Code repository
zipzip39 25th Sep
@OS Reload

knowledge is power!

diablo 3 beta
0 Votes
+ -
And to think
klumper Updated - 13th Sep 2010
Googs wants to rule the world. Oh the irony.

Do No Evil
We want the world, and WE WANT IT NOW!
0 Votes
+ -
Silly Season is starting earlier than expected
OS Reload Updated - 13th Sep 2010
Why did you come so early? Early bird discount or something?
0 Votes
+ -
Googs is free game now
klumper 13th Sep 2010
@OS Reload

They should have known the squeaky wheel gets more than grease.
0 Votes
+ -
RE: More nasties found on Google Code repository
grahamrix 18th Oct
@klumper of course, well pointed out.

Nice post my friend

saucony running shoes
0 Votes
+ -
RE: More nasties found on Google Code repository
xangpow 13th Sep 2010
you know as a joke i told a few of my friends that if they used google they would get a virus, who knew that it would be true. lol
0 Votes
+ -
RE: More nasties found on Google Code repository
lovedong 13th Sep
Wow,Thanks again! replica watches
0 Votes
+ -
RE: More nasties found on Google Code repository
justjosephhere Updated - 13th Sep 2010
I frequently read articles here and refer them to associates who "have a bit yet to learn". Thank You to the publishers and authors for that!

Too bad though, that the majority of "Talkback" comments have nothing for those new to the ways of the 'net. Other than to hurt your own arm patting yourself on the back for already knowing the new info or just posting some superfluous noise, why are you guys here? What are you contributing to the Community? Where is the solution-seeking cooperative encouragement that will make things better for all? Are you the same guys I read on various "political" boards? Are you all neo-cons? Your behavior seems obstructionist!

Kudos to "OS Reload" for demonstrated patience and "can-do" encouragement to the less knowledgeable to keep learning! Your "type" will propel us all to better tomorrows.
0 Votes
+ -
Those new to the ways of the 'net
klumper 13th Sep 2010
@justjosephhere
What are you contributing to the Community? Where is the solution-seeking cooperative encouragement that will make things better for all?

Neocons? Please. I can't speak for everyone under the umbrella you've painted, but I can say that some of us have been around for a spell. Meaning, our noses aren't quite as cherubically shiny as in the days of yore (hell, some had already flamed to a crisp during the Usenet era).

Now when you get to such bloodshot climbs, maybe you too will join us [the forces of evil, buwahahaha]. As for superfluous noise and obstructionist behavior, that sound echoes from tabernacles on high too, don't kid yourself. You know, from the very sources you're seeking to champion.

Only the sanctimonious, trickle down capitalist ethos many have proclaimed as our modernistic savior evaporates when the pipes start to leak. Repeatedly. To wit, unfulfilled promises dished at breakneck speed have remained just that in this new, diminishing returns world.

Let me be the first to say, welcome aboard newb.
0 Votes
+ -
RE: More nasties found on Google Code repository
e1nh4nd3r 13th Sep 2010
This is what happens when anyone provides code hosting of any variety without any kind of verification or fee. This is also why extreme security is a must-have for any company connecting to the internet these days. You never know when a malicious computer-using individual is going to spring something on you.
0 Votes
+ -
Lets assume the title read
DontBeEvil 14th Sep 2010
"More nasties found on Microsoft Code repository"

What kind of reaction would you think we would see...

This is typical of Microsoft, they think they are giving things for free doesnt mean they can by pass security, in fact by giving things for free they are doing a disservice to the Internet community. Microsoft should stop putting half baked solutions on the web under the pretext of giving for free...blah blah blah
0 Votes
+ -
RE: More nasties found on Google Code repository
myclub 1st Jul
http://www.52tube.com/
http://www.wctube.com/
http://www.cameporn.com/
http://www.escortbayan9.com/
tamam
0 Votes
+ -
RE: More nasties found on Google Code repository
neo61322 7th Sep
This is an excellent article. The following publish supplies genuinely high quality info. My spouse and i?meters bound to check in it. Truly extremely helpful points are given listed here. Many thanks a great deal. Carry on favorable functions. vintage snapback hats best solid state drive
0 Votes
+ -
RE: More nasties found on Google Code repository
MAGENs 7th Sep
This is a really good read for me. Must admit that you are one of the best bloggers I have ever read. Thanks for posting this informative article. baby gifts for boys baby gifts for girls
0 Votes
+ -
RE: More nasties found on Google Code repository
LUCINDe 7th Sep
I like the article you wrote here; it is very informative and useful for the internet users like me. I will come back to read more blog posts on your website and I have bookmarked your website as well Thank You know style clothing store girls clothing stores online
0 Votes
+ -
RE: More nasties found on Google Code repository
MACKENZI 10th Sep
I also desire to signal in your RSS feeds. Thank you as soon as once again and maintain up the great operate! nccma cooler
0 Votes
+ -
RE: More nasties found on Google Code repository
MARAGARET 11th Sep
I used to be more than happy to seek out this internet-site.I wanted to thanks in your time for this glorious read!! I positively enjoying each little bit of it and I have you bookmarked to check out new stuff you weblog post. this thread is amazing i like your work and i appreciate you that you have share a useful stuff thanks for sharing the i shop abatwa
0 Votes
+ -
RE: More nasties found on Google Code repository
RHIANNONA 12th Sep
I used to be more than happy to seek out this internet-site.I wanted to thanks in your time for this glorious read!! I positively enjoying each little bit of it and I have you bookmarked to check out new stuff you weblog post.Bookmarking now thanks please consider a follow up post. power sa shop
0 Votes
+ -
RE: More nasties found on Google Code repository
SATURNINA 13th Sep
I think the representation of this article is actually superb one. This is my first visit to your site. Thanks a lot and keep sharing the information. Keep updating the information for all of us. Thanks ZDNet Government was launched as the brand's first industry vertical, with a mission to cater to IT professionals in the public secto I agree with your post. However, do you have any sources I can cite for my paper wheel car com bury
0 Votes
+ -
RE: More nasties found on Google Code repository
TOCCAR 25th Sep
Well welcome, hopefully you can become a vital member of the community and really help to push far ahead of google. Which Im sure the development team would love. This will of course earn you alot points too and get you on the leaders board. z d n e t t h a n k Im not sure i come to an agreement with you on every level, howevor it absolutely was a good posting, many thanks for taking the time to put up your ideas.
0 Votes
+ -
RE: More nasties found on Google Code repository
CLAUDET 25th Sep
This is my first visit to z d n e t site. Thanks a lot and keep sharing the information. Keep updating the information for all of us.how can i clean up, because i don???t know why it seems my skeen has to fat i get the glasses dirty every day.i search y a h o o Very good quality indeed. I surely recommend it. The template used in their site is also great.
0 Votes
+ -
Great
Brenda345 27th Sep
Took a lot of time to read but I really found this very interesting and informative, thank you buddy for sharing.

Stationary Design Services
Website Design Services
Banner Design Services
Brochure Design Services
Cheap Logo Design
0 Votes
+ -
RE: More nasties found on Google Code repository
MEJIAHA 29th Sep
Fantastic news about the new release.I positively enjoying each little bit of it and I have you b o o k m a r k e d to check out new stuff you weblog post.Im not sure i come to an agreement with you on every level, howevor it absolutely was a good posting, many thanks for taking the time to put up your ideas
0 Votes
+ -
RE: More nasties found on Google Code repository
Nagelstudio in Hamburg 13th Oct
Very informative Post, thank you for that! http://www.nagelstudiohamburg.net
0 Votes
+ -
RE: More nasties found on Google Code repository
FAULKNE 13th Oct
Good day to confirm this comment I would appreciate T h e b e s t o f Z D N e t d e l i v e r e d your website very nice to everyone Yes, Oracle is the only one with shared-disk architecture, but that is there advantage. It means you can add or remove nodes and the database lives on. In a shared nothing architecture, if you lose a node, you lose the system. I'm sure Oracle appreciates EMC highlighting their advantage.I also desire to signal in your RSS feeds. Thank you as soon as once again and maintain up the great operate Awesome post! Thank you very much || thanks for nice content this is really benefit to me.
0 Votes
+ -
RE: More nasties found on Google Code repository
grahamrix 15th Oct
Sweeeeet

saucony jazz
0 Votes
+ -
RE: More nasties found on Google Code repository
grahamrix 19th Oct
TTT

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix