Spam Tactics
As seen in the theregister, Spammers have been using the rarely used “I’m feeling lucky, punk” button and the idea of googlewhacking (popularised by Dave Gorman) for this google attack vector.
The trick worked because a spammer had managed to make a search query that was specific to their website, using an advanced Google search combining the “inurl” and “intext” operators. Next comes the clever part: spammers simulate a user click on Google’s seldom-used “I’m Feeling Lucky” button, so that surfers are taken directly to the first result that comes up for the entered search query. As the spammer has designed the query to yield only one result - that of the spamvertised site - surfers are taken directly to a junk-mail-promoted site after selecting what looks like a search result entry.
Always be careful of the opposite sex, especially online as there’s a virtual stripper floating about which seemingly slip pass captchas for yahoo as a trojan.
Spammers have come up with a sleazy - but undoubtedly ingenious - way to defeat anti-spam security checks. The Captcha Trojan disguises itself as a stripper game that offers voyeurs the chance to see images of a model getting undressed. In order to get “Melissa” to lose an item of clothing, the user must identify the letters or numbers found within a scrambled text image that forms the basis of a captcha (Completely Automated Public Turing test to tell Computers and Humans Apart). Providing users identify the letters correctly, Melissa shows a bit more skin.