One Article Review
| Source |  AlienVault Blog |
|---|---|
| Identifiant | 1973499 |
| Date de publication | 2020-10-13 11:00:00 (vue: 2020-10-13 12:06:22) |
| Titre | What is search engine clickbait and how do hackers trick Google\'s crawlers? |
| Texte | This blog was written by an independent guest blogger. Search engine optimization (SEO) works with algorithms to ensure that the most relevant and most popular webpages show up first in an internet search. SEO makes sure that the best websites get the biggest boost. However, SEO has a lesser-known, evil twin called black hat SEO. This term refers to a common trick of cybercriminals. Black hat SEO is meant to circumvent algorithms, exploit weaknesses, and create fraudulent links. The goal of these actions is to push malware-laden websites and other nefarious web pages on to unexpecting users. In this article, I will discuss the top ways cybercriminals hijack search engines and some examples of successful black hat SEO attempts. Understanding how cybercriminals operate and spotting their tricks can be an effective way to protect remote workforces and keep casual users safe. Stealing SEO Hackers want to catch users off guard when they are browsing the internet. They want you to click on their links and download their files so they can install malware, ransomware or other viruses on your computer. One way they can achieve this is by piggybacking off the popularity of well-established websites. This rudimentary technique can be used by even the most novice hacker. For example, some websites allow users to post comments or upload files on their webpage. Hackers can post a link to their malware or upload a file that contains a virus on a popular webpage. They know that the website has a large audience, so chances are someone will click on it. A hack like this recently happened on the UNESCO website and a Cuban government website, among a few others. A user under the moniker m1gh7yh4ck3r uploaded PDF files offering help in hacking into online accounts. When users clicked on the links, it led to a variety of scam websites that urged visitors to download files in exchange for the program. All the websites used an outdated Drupal CMS system tied to a Webform module that had vulnerabilities in the file share function. Modern websites can avoid having these glaring vulnerabilities by using SAST (Static Application Security Testing) to automatically scan written code for weaknesses. Coronavirus clickbait This particular hacking technique takes advantage of the coronavirus global health crisis. This technique exploits the fact that so many people around the world rely on the internet to provide them with information. This hack is very similar to the hack that was successfully used on the UNESCO website. It doesn’t take extensive Cybersecurity IQ training to understand. Researchers recently discovered fraudulent, online drugstores using credible health websites with coronavirus-related headlines to gain web traffic. The cybercriminals visited high-profile health websites with comments sections or forums and used bots to post a multitude of messages linking to their website. Of course, most of the messages enticed users by claiming to have cures for coronavirus, or by promising those who click easy access to illicit drugs. An additional benefit for the bad actors is that websites with many coronavirus-related keywords will rank higher on a Google search due to high public interest. The bad actors with the dangerous links gain SEO credibility by the increased traf |
| Envoyé | Oui |
| Condensat | “abc m1gh7yh4ck3r about access accounts achieve achieved actions activity actors additional advantage algorithm algorithms all allow allows always among any application applications are around article attacks attempts audience automatically avoid back bad banned bay because been being benefit best biggest black blog blogger bookmark boost bots browsing business businesses but called campaigns can casual catch central chances cheat circumvent claiming click clickbait clicked clicking clicks closely cms code comments common company compromise computer constant constantly contains control coronavirus course crawlers create credibility credible crisis cuban cures cybercriminals cybersecurity dangerous data dedicated designed discovered discuss doesn’t doing download drugs drugstores drupal due easy educating effective efficient elegantly employee end enforcing engine engines ensure enticed especially essential established even evil example examples exchange exploit exploits extensive facing fact falling families file files first forces forums forwards fraudulent from full function future gain get glaring glitch global goal google google’s government guard guest hack hacker hackers hacking had happened harder harm harmful has hat have having headlines health help high higher highly hijack how however identical illicit impervious important increased independent information informed install interest internet it’s keep keeping key keywords knockoff know known laden large led legitimate lesser like link link’s linking links login login” look looking lookout loophole loopholes make makes malware manage manually many meant messages method modern module moniker most multitude must nefarious not novice off offering one online open operate optimization other others ourselves outdated page pages part particular pdf people phishing piggybacking place policy popular popularity portal post potentially presence professionals profile program promising protect protecting provide public push rank ransomware recently redirect redirected redirects refers related relevant rely remote removed reputable requiring researchers results rudimentary safe sast scam scams scan search sections security seo share show shown shows similar some someone sophisticated spotting static stay stealing successful successfully such sure suspicious system take taken takes team technique term testing them these those thousands through tied tightly top traffic training trick tricks twin under understand understanding unesco unexpecting unvalidated updated upload uploaded urged url urls used user users using utilized variety various very vigilance: virtue virus viruses visited visitors vulnerabilities vulnerability want way ways weaknesses web webform webpage webpages website websites well what when who will won’t workers workforces working works world written your |
| Tags | Ransomware Malware Hack Vulnerability |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.