NCAA March Madness Malicious Blog Links

Date:03.16.2009

Threat Type: Malicious Web Site / Malicious Code

Websense® Security Labs™ ThreatSeeker™ Network has discovered a massive malicious comment spam campaign brewing in the blogosphere, made to coincide with the NCAA's "March Madness" basketball tournament.

Clicking on the URLs in the blog comments associated with this spam campaign takes users to a malicious Web site masquerading as a fake anti-virus scanner, or a Web site that serves up a fake video codec download.

Screenshot of a malicious Web site:

The URLs involved in the malicious activity detected by Defensio look like this:

Websense, Inc., recommends that NCAA basketball fans be cautious when clicking on March Madness related hyperlinks. Just earlier today, we alerted on an SEO poisoning attack that led to similar malicious Web sites.

Websense Messaging and Websense Web Security customers are protected against this attack.

•  Subscribe to this feed »