4

Hey all!

While investigating some malvertising campaigns today, I noticed that one of the sponsored google search results, upon hovering, appeared to be changing/resolving through rather than simply showing what link was being used by the result.

Any ideas as to how this hover url result works and if you can disable resolving/force top-level results upon hovering over anchor elements?

Malvertising is hot hot hot!

top 2 comments
sorted by: hot top controversial new old
[-] cron@feddit.de 1 points 5 months ago

I don't fully understand what you mean, but google changes some links when you click them to track what you clicked on.

[-] stevedidwhat_infosec@infosec.pub 1 points 5 months ago

So when you hover over an item usually, it shows on the bottom left/right what the link is

But in this case (edge and chrome) I see the link actively changing and like resolving or something of the sorts. Very odd. I don’t normally use these two put it was the only way I could see the sponsored links (thanks Firefox!)

Normally I’d expect just a static “this link here, goes here” rather than it changing in real time like this. Wondering if it’s normal chrome/chromium behavior or if this is an exploitation of google search functionality stemming from the google search source code leaks from earlier last week or the week prior.

Very interesting stuff.

this post was submitted on 10 Jun 2024
4 points (100.0% liked)

cybersecurity

3310 readers
19 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Enjoy!

founded 1 year ago
MODERATORS