14 DAY TRIAL // A Ukrainian researcher prepares one of the largest security advisories ever released concerning the Internet search engine. It seems that the researcher aims to present vulnerabilities and security issues discovered in some of the most famous Internet technologies including Google, Yahoo, Ask.com and MSN. According to Computerworld, the research is expected to be released on June 1, revealing cross-site scripting vulnerabilities and search engine flaws discovered this month.
"Purpose of this Month of Bugs is a demonstration of [the] real state with security in search engines, which are the most popular sites in Internet. To let users of search engines and [the] web community as a whole to understand all risks, which search engines bring to them. And also to draw attention of search engines' owners to security issues of their sites. The entry was in both English and Russian," the researcher sustained according to Computerworld.
Obviously, the search engines are vulnerable, but the companies are struggling to identify the flaws quickly and patch them before the attackers manage to exploit them. Take for example Google that was affected several times by more or less critical vulnerabilities quickly patched by the search giant. However, it's quite clear that the search engines are periodically affected by security flaws, but what's most important is the researcher who must notify the companies before he publishes the article.
According to the same source, the research intends to split the article into several parts and post new vulnerabilities for different search engines every day. This way, the companies and the interested users will be able to observe and analyze all the security flaws discovered in a certain search technology. The upcoming research is quite interesting because it will allow us and analysts to make a comparison between the current online search engine and choose the most secure one.