Google blocking all bit.ly links as malicious [now fixed]

Hopefully this is a false alarm.

Bit.ly blocked

It seems bit.ly has made its way onto Google’s list of sites that aren’t safe to browse to.

Let’s hope it gets fixed soon, because boy oh boy it’s going to be inconvenient.

At the time of writing there is no mention of the issue on the bit.ly blog or its Twitter account.

Of course - and this may be utterly unrelated - bit.ly did suffer a user credential hack earlier this year.

Until more is known, it’s possibly best to avoid links used by the URL-shortening service right now. Fingers crossed that there hasn’t been a security breach at bit.ly, and Google has goofed up.

Update:

It appears the issue has now been resolved.

Tags: , , ,

   Join thousands of others and sign up to our free "GCHQ" newsletter.

Smashing Security podcast
Check out "Smashing Security", the award-winning weekly audio podcast, with Graham Cluley, Carole Theriault, and special guests from the world of information security.

"It's brilliant!" • "Three people having fun in an industry often focused on bad news" • Winner of the Best Security Podcast 2018

Latest episodes:
Listen on Apple Podcasts Listen on Google Podcasts

, , ,

4 Responses

  1. Alan

    October 25, 2014 at 11:28 am #

    Tis a pain Graham, we rely heavily on Bit.ly as up to now it has been a great service to use but will be very off putting to our customer base if they think our website has a malicious intent…

    Has anything surfaced from Bit.ly HQ yet?

    Cheers

    Al

  2. Keith Petersen (w8sdz)

    October 25, 2014 at 11:44 am #

    Graham, the folks in the goo.gl URL shortener forum are reporting that Google is also marking goo.gl short URLs generated on the Feedburner site as malicious.

    Reference: https://groups.google.com/forum/#!topic/google-url-shortener/BwQvwR3e2ms

    I posted a comment there lamenting the fact that Google is encouraging all sites to use https, but their own goo.gl shortener still uses http. Perhaps bit.ly should consider doing the same, if they haven’t already. It helps to assure that the short URL actually came from there.

    Thanks for accepting my contact request on LinkedIn.

    Keith

  3. LUFOS

    October 25, 2014 at 2:29 pm #

    It got my followers and me shocked!
    But i think they fixed the problem now.

  4. Andy

    October 28, 2014 at 3:28 pm #

    I wonder if this has to do with the sms crypoware that’s attacking android via a bit.ly link?

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.