Select Page

Someone put up a fun site in October. The “Mystery Google” search page gives you the search results of the person who did a search before you. The results can be… ahem… interesting. I tried it out with the word “Russia.”

Mystery Google

Here was the previous person’s search. I’m not sure what was up, but I sense a bit of hostility:

Mystery Google 2

Unfortunately, this could be used by rogue security product vendors or other malicious operators to direct victims to their sites. They’d only need to set up sites with drive-by malware then create an automated agent to do a whole lot of Mystery Google searches for terms that would hit those sites.

So, if you play with it, be careful where you go after the first screen.

Here is the whois info:

Domain Name: mysterygoogle.com

   Registrant Contact:
      mysterygoogle.com Private Registrant
      A Happy DreamHost Customer
      417 Associated Rd #324
      Brea, CA 92821
      US
      +1.2139471032

     mysterygoogle.com@proxy.dreamhost.com

   Record created on 2009-10-02 10:13:25.
   Record expires on 2010-10-02 10:13:25.

Thanks to Alex and Chaim Rieger on funsec

Tom Kelchner