Pay per click hijacking



Interesting article at lurhq.com on pay per click hijacking, which is really an extension on old DNS poisoning attacks. Essentially the DNS poisoning attack works like this…


Every domain name on the internet is really just an easy way to access the machine address or IP address. So google.com right now resolves to 216.239.39.99 for me and they have a round-robin record of sorts I think, so that I could check a few times and get a few different addresses, all under the control of Google.com and all legitimate. This lookup that happens though happens on Nameservers that are supposed to keep an accurate index of where these domains point. The catch comes when someone is able to poison the information in these nameservers. Let’s say someone is able to poison the server for www.google.com to point to 12.3.4.56 which is really under control of slimeyfraudsters.com. The page is made to resemble google and instead of google search results the search results are afilliate ads.

Under this scenario, 12.3.4.56 gets a lot of traffic, slimeyfraudsters.com gets lot’s of clicks (ad revenue from their affiliate ads.) In time things get righted and it’s hard to trackdown slimeyfraudsters. What can you do to protect against DNS hijacking. Not a lot really, this is something that ISP’s need to be concerned about. Obviously from time to time sites will do a redesign, but if something looks terribly amiss with a particular site. (CNN replaced with ads for who knows what), you might want to contact your ISP if things are terribly amiss. Unfortunately, they may suspect you have spyware and send you on a quest of cleaning up your own machine before you point the finger at them. Normally this kind of poisoning gets sorted out relatively quickly. It’s something worth being aware of though.
CNet news is reporting on this story as well.

Related Posts

Blog Traffic Exchange Related Posts
  • Real time Global strategy game using Google Maps? Some time back, there was a Risk clone using Google maps which was interesting, but taken offline due to a legal letter. Well, I have had a long interest in strategy games.... (Risk/Axis&Allies and variants as well as the civilization/freeciv variety and Age of Empires/etc....) Anyway... saw this last week.........
  • Another IE security flaw this one could lead to data theft I saw this earlier this afternoon at betanews.com there seems to be a flaw in the way Internet Explorer deals with css that could put your data at risk. According to this article it is a risk combined with Google Desktop. This can be "fixed" by disabling scripting or using......
  • Adwords Referrals from Google I noticed something yesterday when I had logged into the adsense page at Google. They've now added "adwords" referrals. For those that don't know - Adwords is the name for the program where you can advertise your site on google, or through their advertising network (such as this site for......
Blog Traffic Exchange Related Websites
  • Asus Eee: I'm In Techno-Lust With You A year ago, I was looking for a portable computer that could allow me to blog from places like Aruba. I thought I found an acceptable solution with a PDA and bluetooth keyboard. It didn't work quite as well as I hoped. As two pieces, you can't put it on......
  • How To Avoid Common Adwords Mistakes Businesses large and small use Google AdWords to generate leads as well as advertise their products. This advertising service, which is a major source of Google's revenue, has been in existence for some years now. Advertisers have invested many millions into this program and more goes into it each year.......
  • How To Make Money Online Series Making Money Online With PPC Series Article 15 Pay Per Click is a way to drive traffic to your site. You create small written ads for your product or site and then place the ads with one of the PPC network companies, such as Google AdWords or even social media......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site