Ads by TechWords

See your link here
Receive the latest technology news and information.
Security
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
Cloud Computing
View all newsletters




Privacy Policy
 

Human error causes Google search bug

The glitch, warning that sites 'may harm your computer,' lasted about an hour

January 31, 2009 12:00 PM ET

Active Comments
Anonymous says: Wrongly labeling all legitimate sites in the world as dangerous to user computers is penny-ante stuff. Another error that Google...
WinTard says: Everything human is filled with the potential for errors. And that is ok. However, PR people pointing the finger elswhere...


IDG News Service - Human error caused a search-results glitch that returned the message "This site may harm your computer" for about an hour Saturday on Google Inc.'s Web site, the company said. The mistake was Google's, not StopBadware.org's, as was originally thought.

Google said it released an update Saturday morning to its list of Web addresses known to install malicious software and "unfortunately (and here's the human error), the URL of '/' was mistakenly checked as a value to the file and '/' expands to all URLs," wrote Marissa Mayer, Google vice president of search products and user experience, in an official Google blog post explaining the glitch. "Fortunately, our on-call site reliability team found the problem quickly and reverted the file."

Mayer's original blog posting about the incident made it sound as if StopBadware.org was responsible for the error. StopBadware.org is a nonprofit organization that Google and other IT companies and academic institutions use to warn Internet users about sites known to install malware on computers that visit those sites. Mayer later posted an update clarifying that the problem was on Google's end.

Mayer initially wrote that Google periodically receives updates to the URL list and had received such an update on Saturday morning. Her revised blog post said instead that "we periodically update that list and released one such update to the site this morning," and then spelled out the '/' mistake.

After the first Google explanation went out publicly -- and was circulated to reporters -- StopBadware explained its side of the story on its own blog: "Google generates its own list of badware URLs, and no data that we generate is supposed to affect the warnings in Google's search listings."

Users who clicked on Google results during the glitch got an "interstitial" warning page saying that there could be malicious software at the site they were trying to reach and referring them to StopBadware.org for more information, the organization's blog said. "This led to a denial of service of our Web site, as millions of Google users attempted to visit our site for more information," it said.

StopBadware operates as a partnership among academic institutions, IT companies and volunteers. It is operated out of Harvard Law School's Berkman Center for Internet & Society. Its site was back up and running Saturday, if slowly at times because many people were trying to obtain information from the organization.

In both the initial post and the update, Mayer apologized in her post to anyone who was inconvenienced by the glitch and to site owners whose pages were incorrectly labeled as being malicious. "We will carefully investigate this incident and put more robust file checks in place to prevent it from happening again," she wrote.

Some news reports earlier in the day said that Google had also stopped flagging known bad sites, but according to StopBadware, that wasn't the case, and Google was correctly flagging those sites as malicious.


Reprinted with permission from

IDG.net
Story copyright 2009 International Data Group. All rights reserved.

Jump to comments

Human error

Additional Resources

EFD vs. HDD - What You Need to Know
WHITE PAPER
Enterprise flash drives provide a new Tier 0 storage layer capable of delivering high I/O performance at a very low latency. Proper use of EFDs in an Oracle environment can deliver increased performance compared to fibre channel drives. Read the recommendations for identification of the best DB components for EFDs.
Gartner Research Report: Magic Quadrant for Application Delivery Controllers, 2009
WHITE PAPER
The market for products to improve the delivery of application software over networks remains dynamic and innovative. Vendors focused on solving enterprises' most-pressing application problems have become the top players.
Eight Criteria for Server Load Balancing
WHITE PAPER
Server load balancers are a simple yet highly effective means to scale an application environment while ensuring its availability. Today's solutions should also address application performance and security. Read about the top eight criteria you should consider when choosing a server load balancer and how Citrix NetScaler meets those requirements.

What People Are Saying

White Papers & Webcasts

Death to PST Files
Download Now  

Web 2.0, Social Media and the Dark Web - A Web Criminals Paradise?
In this discussion, learn about the challenges of protecting your users from the potentially unsafe content hidden in the "Dark Web".

eGuide: Enterprise Security
Smart Security Strategies for 2010. Read now!  

Disaster Recovery 2008: Reduced Costs and Improved Performance
How long can your Enterprise afford to be without your data? With an accelerated disaster recovery program, you never have to answer this...


IT Jobs