While this post might give you 2nd grade flashbacks to spelling quizzes and vocab sheets, we wanted to give you a heads up on a Google Analytics malicious code notice that’s been flying around online.
Sounds crazy-scary right? So what does it mean?
Thousands of legitimate Web sites have been discovered to be injected with malicious Javascript, obfuscated code that leads to an active exploit site. The active exploit site uses a name similar to the legitimate Google Analytics domain (google-analytics.com), which provides statistical services to Web sites.
No Schipul clients have had their sites affected by this malicious code (Security is our first and middle name, we work hard to keep you safe and sound), but as a Web surfer this is good information for you to be aware of.
If you do visit an infected site, you might be asked to download some software. Exploited computers run the risk of having malicious viruses installed – read more about code injection here.
Here are our tips for you:
- Spelling bee time!! Don’t click on links to unauthorized Google Analytics sites with misspellings in the name. This goes for ANY link that wants you to log in or go someplace – in an email or on a site. Pay special attention to bank, Paypal and EBay-type email ‘notifications’ and never, ever, ever give your password to ANYONE.
- The real actual Google Analytics doesn’t want to install software on your machine. So don’t do it, plain and simple.
- As always, keep your virus scanning software up to date and your passwords secure.
- Paranoia is a good thing – if something feels a little ‘off’ to you, it just might be – so err on the side of caution.
Still have concerns or want to double check on a virus scan notice you’ve received or a site you have questions on? Give our rocking Search Engine Marketing team a call to calm those nerves. We’re here for you, even if you just need some help with your spelling homework. (281) 497.6567, ext. 533
Thanks for this. I thought it was intersting that I received a legit e-mail from PayPal yesterday and appreciated the fact that it did not even include a link. I would not have clicked it if they did have one — but the absence of a link reassured me that it really was from PayPal. Not long ago, I would have been annoyed that they didn't offer a link to make my life easier, but that mindset has done a 180.
hh. nice ))