Google Image Search used to distribute malware

Attackers are now using Google's image search to distributed malware, security experts say. Thousands of sites have reportedly been compromised by code injection--the malicious code redirects users to fake antivirus applications.

Internet Storm Center researcher Bojan Zdrnja writes that the attackers are mostly targeting Wordpress sites, and are injecting PHP code that generates pages with images based on highly-searched content. Google then indexes these pages, and the images show up on Google's image search.

Image hack is widespread and effective

Image searchers can be redirected to these fake antivirus sites, thanks to Google displays images when clicked, Zdrnja wrote in a blog post this week. At least 5,000 sites have been compromised, and Google could be serving as many as 15 million hits a month to these malicious pages.

For more

Source:*[1]