Wednesday, December 22, 2004
Google stops Santy Posted by Ceco @ 18:25 GMT

We are happy to report that Google is indeed filtering the requests coming from the Santy-infected machines as reported here: Wrapup on Case Santy

To verify this, after dissecting the worm in our test labs, we took a single query that the worm generates and sent it to Google. The result was an expected 403 error code with brief explanation why the search was denied as shown on the picture below.

403_google (66k image)

<<< Wrapup on case Santy
MP3 and video versions of the Data Security Summary 2004 >>>