Google blocking all bit.ly links as malicious [now fixed]

Hopefully this is a false alarm.

Bit.ly blocked

It seems bit.ly has made its way onto Google's list of sites that aren't safe to browse to.

Let's hope it gets fixed soon, because boy oh boy it's going to be inconvenient.

At the time of writing there is no mention of the issue on the bit.ly blog or its Twitter account.

Of course - and this may be utterly unrelated - bit.ly did suffer a user credential hack earlier this year.

Until more is known, it's possibly best to avoid links used by the URL-shortening service right now. Fingers crossed that there hasn't been a security breach at bit.ly, and Google has goofed up.

Update:

It appears the issue has now been resolved.

Tags: , , ,

Smashing Security podcast
Check out "Smashing Security", the new weekly audio podcast, with Graham Cluley, Carole Theriault, and special guests from the world of information security.

"Three people having fun in an industry often focused on bad news" • "It's brilliant!" • "The Top Gear of computer security"

Latest episode:

, , ,

4 Responses

  1. Alan

    October 25, 2014 at 11:28 am #

    Tis a pain Graham, we rely heavily on Bit.ly as up to now it has been a great service to use but will be very off putting to our customer base if they think our website has a malicious intent…

    Has anything surfaced from Bit.ly HQ yet?

    Cheers

    Al

  2. Keith Petersen (w8sdz)

    October 25, 2014 at 11:44 am #

    Graham, the folks in the goo.gl URL shortener forum are reporting that Google is also marking goo.gl short URLs generated on the Feedburner site as malicious.

    Reference: https://groups.google.com/forum/#!topic/google-url-shortener/BwQvwR3e2ms

    I posted a comment there lamenting the fact that Google is encouraging all sites to use https, but their own goo.gl shortener still uses http. Perhaps bit.ly should consider doing the same, if they haven't already. It helps to assure that the short URL actually came from there.

    Thanks for accepting my contact request on LinkedIn.

    Keith

  3. LUFOS

    October 25, 2014 at 2:29 pm #

    It got my followers and me shocked!
    But i think they fixed the problem now.

  4. Andy

    October 28, 2014 at 3:28 pm #

    I wonder if this has to do with the sms crypoware that's attacking android via a bit.ly link?

Leave a Reply