According to security specialist F-Secure, unsuspecting Web surfers may be bombarded with various types of Trojan horse threats, spyware and backdoors when they go to "Googkle.com." The scheme is meant to take advantage of sloppy or hurried typists, given that on most keyboards the letter "k" key sits next to the "l" needed to type "Google."
Google representatives said the company had no comment on the matter for the time being.
In the past, the company appears to have made moves to protect its users against mistyping errors. If a person puts an extra "o" in Google's URL, they are simply redirected to the company's homepage. On the other hand, if someone mistakenly adds a fourth "o" to Google, they are directed to USseek.com, a Web portal that offers pop-up advertising for an online casino.
In an advisory, F-Secure strongly advises people not to go to Googkle.com. People who do so will see two pop-ups linked to Web sites that install the Trojan programs. One of the programs is a phishing-style Trojan that attempts to garner individuals' online banking information, while another drops phoney antivirus alerts on the victim's desktop that attempt to lure people to other infected Web sites.
While relatively low-tech in terms of its social engineering, the URL mistype attack is an approach that has long been incorporated by many different kinds of Internet opportunists, from legitimate companies trying to steal traffic from their rivals or simply piggyback on the success of larger companies, to criminals looking to misrepresent themselves and trick consumers into handing over personal data.
In one of the most famous instances of URL deception, the site hosted at Whitehouse.com for several years was an advertisement for pornography, not a link to the office of the president, whose official site is Whitehouse.gov.
Being the curious type, I started up a virtual session of Windows XP, loaded with Service Pack 2 and the latest security hotfixes applied using the Windows Update service.
In this configuration, I also had AVG and anti-spyware software running. Windows Firewall was turned on.
I then fired up Internet Explorer and sure enough, Service Pack 2 turned on the feature to block pop-ups. Cookie security (Privacy) was set to Medium.
I typed in www.googkle.com and sure enough, several scripts tried to run. Having failed, it tried other php scripts and finally ended up looping on one particular script.
Of course, I was totally protected. Nothing got loaded onto my machine and nothing was taken/damaged.
Both Anti-Virus and the Anti-Spyware software did not pick up a thing during and after when I performed a scan.
The moral of the story is; keep your operating environment up-to-date and follow the recommendations given to you by your software vendor. In this case, surprisingly, its Microsoft.