Google has somewhat controversially begun searching users’ Windows-based computers for malware, after it detected some suspicious search traffic in its servers.
A computer infected with this kind of malware, which may have come from downloading software or reading an email, may result in deleted data, stolen personal information and a slower connection to many websites.
The malware, which hasn’t been named because it includes several variants, prompts infected Windows computers to send traffic to Google through intermediary or proxy servers, making the source of the infections tougher to trace.
Users whose computers are found to be distributing malware will see a yellow notification atop their Google web search results, warning:
Google then redirects users via a link to fix the issue by performing a system scan and updating their antivirus software if necessary.
The company confirmed the suspicious search traffic was malware after huddling with security experts at several companies that were sending this modified traffic.
The company was particularly tight-lipped about the details, presumably to continue investigating the issue. Google isn’t sure where the malware is coming from or exactly what effect, if any, the malware has on had on Google users.
More information is available on Google’s help centre page here.
Search Engine Land’s Danny Sullivan ferreted out more info, including the fact that Google is concerned about “Windows Protection Suite,” a fake antivirus software program that appears to be routing traffic to Google.
Krebs on Security interviewed Google security engineer Damian Menscher, who found the pernicious software while conducting routine maintenance at a Google data centre.
All Cybertrucks manufactured between November 2023 and February 2025 recalled over trim that can fall…
As Musk guts US federal agencies, SEC issues summons over Elon's failure to disclose ownership…
Moonshot project Taara spun out of Google, uses lasers and not satellites to provide internet…
Pebble creator launches two new PebbleOS-based smartwatches with 30-day battery life, e-ink screens after OS…
Amazon loses appeal in Luxembourg's administrative court over 746m euro GDPR fine related to use…
Nvidia, xAI to participate in project backed by BlackRock, Microsoft to invest $100bn in AI…
View Comments
"Google has somewhat controversially begun searching users’ Windows-based computers for malware..."
This is incorrect, Google is not searching users' computers. Infected users' Google queries go through proxy servers. Those proxy servers then forward the queries to Google. If Google sees a search request coming via a proxy server the search result page has an extra note about a possible infection.