Products
Business Assurance Technology
Security & Policy Enforcement Center

ProxySG

Secure Web Gateway Virtual Appliance

Web Security Service

ProxyAV

WebFilter

DLP

Director

CheckPoint for X-Series

McAfee for X-Series

Sourcefire for X-Series

Mobility Empowerment Center

Mobile Device Security Service

Trusted Applications Center

Web Application Reverse Proxy

Imperva for X-Series

Performance Center

PacketShaper

Mach5

CacheFlow

Resolution Center

Reporter

Hosted Reporting Service

Intelligence Center

Business Assurance Platform

Open Architecture

Intelligence Ecosystem

Global Cloud Infrastructure

Scalable X-Series Platform

Security Lab
Who's Secure

Customer Success Stories
Blue Coat has a long history of protecting organizations, their data and their employees and is the trusted brand to 15,000 customers worldwide, including 86 percent of the FORTUNE Global 500. Learn how from our customers!
Solutions Mobile Workers
As mobile workers leave the corporate network, they become more susceptible to threats because corporate policies and protection do not follow them. Blue Coat web security solutions extend the security perimeter of the corporate network.
Social Networking
Social networking is a business imperative in an increasing number of organizations using social as part of their business strategy. Blue Coat web security solutions enable safe social networking.
Threat Protection
Web-based threats are device agnostic, targeting users on desktops, laptops and mobile devices alike. Blue Coat Web security solutions are backed by the WebPulse Collaborative Defense, and protect users and data.

Featured Success Story

Blue Coat Enables Financial Services Company to Grow Locations While Maintaining Application Performance
Partners
Partners Overview
Channel Advantage Partners

Channel Advantage Partner Application

The Channel Advantage Program’s primary objective is to foster joint success by providing compelling top- and bottom-line growth opportunities to Blue Coat partners.
Technology Integration Partners

TIP Application

We work closely with all Blue Coat Systems partners to assure that our products optimally work together for our customers.
Service Delivery Partners
The BlueTouch Support Partner Program enables partners to achieve greater profitability while providing outstanding service quality to the end customer.
Already A Partner?Access the Partner Website Access the X-Series Partner Portal
Company
Company Overview
Blue Coat empowers enterprises to safely and securely choose the best, applications, services, devices, data sources, and content the world has to offer, so they can create, communicate, collaborate, innovate, execute, compete and win in their markets.
Blue Coat Leaders

Careers
Explore the current opportunities available at Blue Coat Systems, the leading-edge security technology company.
News

Overview

Company Blog

In the News

Press Releases

Analyst Reports

Events

Media Resources

Corporate Social Responsibility

Overview

Environmental Policy

Integrity and Ethics

K9 Web Protection

Supply Chain Responsibility

Contact
Blue Coat Systems Inc.
420 N. Mary Ave
Sunnyvale, CA 94085 Map
1-866-30-BCOAT
insidesales@bluecoat.com
(408) 220-2200
Worldwide Offices
Legal

Export Compliance

Privacy

Trademarks
Support
Support & Services
Technical Support

Contact Support & Services

BlueTouch Support Options

X-Series Support Options

Proactive Services

BlueTouch Cornerstone (PDF)

X-Series PremiumDirect Plus (PDF)

Consulting Services

Blue Coat Consulting Services

X-Series Consulting Services

Training Services

BlueTouch Training Services

X-Series Training Services

Support Policies

Warranty Info

Case Handling

RMA Info

HDD Handling Policy

End-of-Life Documents

Gray Market Equipment

Recycling Products

Support Portal Login BlueTouch Online X-Series Support
Find Service Partner Access Partner Locator
Get Secured

Get Secured
United States and Canada
420 N. Mary Ave
Sunnyvale, CA 94085
1-866-30-BCOAT
insidesales@bluecoat.com
(408) 220-2200
MAP
Europe, Middle East & Africa

Latin America

Asia Pacific
Have a sales rep contact you

Unmasking a Halloween-themed SEO/SEP Network

October 10, 2012 - By Chris Larsen

Last Fall, as I was doing an in-depth look at Search Engine Poisoning (SEP) attacks, one of the categories that showed up pretty consistently was "holiday themed" SEP.

And just in time for Halloween, this week I came across a good-sized network of Halloween-themed SEP sites...

Even though Halloween is still 3 weeks away, people are already searching for "killer" (pun intended) costume ideas. Here are some examples of their searches that led them into this network:

professor quirrell costumes
honduras national costume for kids
famous trios halloween costumes
ike and tina turner halloween costumes
gilligans island costume the professor
homemade sonny and cher costume

And my personal favorite:

infants flying monkey costume

(which would have been a fun idea -- back when I had infants -- if my wife would have let me do it...)

Anyway, these and many other Halloween-related terms are being typed into Google and Bing, and people are clicking links leading to sites with names like costume8sr6.in and halloweenarxf.in,* (and many others!) that live on a large number of IP addresses. These domains tend to be over a year old, meaning they've been carefully cultivating a trusted (or at least non-malicious) reputation with the search engines for a long time.

The good news is that this particular SEP network does not seem to be leading into malware. Rather, the clicks lead into what I would characterize as "shady traffic" networks, driving traffic to networks of affiliate sites, for ad- and click-fraud types of activities.

Or maybe I just didn't dig deeply enough. I stopped at this layer, since all of the sites I saw were already rated as Suspicious in our database.

--C.L.

* One of the "search engine safety tips" I tell people is to avoid clicking links to top level domains like ".in" (India) and ".ru" (Russia) in search engine results for topics that have no real relevance to those countries. It's particularly good advice for American holidays like Halloween and Thanksgiving (which is also starting to show up in searches leading into this network, by the way)...

Blue Coat Systems, Inc.

Security Empowers Business

Unmasking a Halloween-themed SEO/SEP Network

What's New

Security Lab

Number of Daily Threats

Total Threats Blocked

Today's Threat Meter

About This Blog

Share This Article