firstly, a correction: I meant XSS / Cross Site Scripting although Phishing does come into play.
I seriously doubt the forums he is posting on are spam sites. The only thing you find when you do a google search for his username is every forum on the web, including this one.
I do know what his game is though. Some of his posts have changed. The bot posts the first message, like it did here on our forum...then goes back later and edits that post to add the viagra spam content like it has done here:
http://forum.vertex4...viewtopic.php?p=1632 (this is a game developer's site)
http://www.bollywood...howthread.php?t=6059 (this is in a religion section on a movie related site)
Ok, so basically its the regular medical drugs spam thing.
The wikipedia pages for XSS
are a relevant must-read.
Google safe-search is only related to adult content. With it turned on, you are less likely to get adult related sites in your results. It has nothing to do with any real safety. It's supposed to keep your searching 'family safe' and/or 'work safe' ...not 'security safe'.
Which just raises a side-issue - AFAIK, browsers have anti-phishing alerts built-in or as extensions. Do you think it a good idea if search engines were to put a small icon beside the URL/title in the results page? A red icon would mean suspicious.
Ask.com, Google, Yahoo Search don't have this thing yet, although it would be pretty simple for them to add that info and pretty useful as well.
Opinions / ideas / criticisms welcome.
Finally, what is annoying me is this: The bot/spammer has succeeded in getting so many of us to look for his identity by googling and clicking. So he actually is not doing any script injection or redirection. He's doing mind injection, if you can call it that. He's playing on your curiosity and it's roughly working.
Can you foresee any exploits?