17 matches found
Unveiling the Resilience of LLM-Enhanced Search Engines against Black-Hat SEO Manipulation
The emergence of Large Language Model-enhanced Search Engines LLMSEs has revolutionized information retrieval by integrating web-scale search capabilities with AI-powered summarization. While these systems demonstrate improved efficiency over traditional search engines, their security implication...
DragonRank Black Hat SEO Campaign Targeting IIS Servers Across Asia and Europe
A "simplified Chinese-speaking actor" has been linked to a new campaign that has targeted multiple countries in Asia and Europe with the end goal of performing search engine optimization SEO rank manipulation. The black hat SEO cluster has been codenamed DragonRank by Cisco Talos, with victimolog...
Over 15,000 WordPress Sites Compromised in Malicious SEO Campaign
A new malicious campaign has compromised over 15,000 WordPress websites in an attempt to redirect visitors to bogus Q&A portals. "These malicious redirects appear to be designed to increase the authority of the attacker's sites for search engines," Sucuri researcher Ben Martin said in a report...
SEO poisoning: Is it worth it?
Search Engine Optimization SEO poisoning basically comes down to getting your web page high in the rankings for relevant search results without buying advertisements or using legitimate, but tedious, SEO best practices. Instead, threat actors use illegal means to push their page to the top...
CryptoPHP Backdoor Hijacks Servers with Malicious Plugins & Themes
Security researchers have discovered thousands of backdoored plugins and themes for the popular content management systems CMS that could be used by attackers to compromise web servers on a large scale. The Netherlands-based security firm Fox-IT has published a whitepaper revealing a new Backdoor...
Malicious Olympic 2012 Android Apps & Domains
Whenever an important event takes place, new opportunities for cyber criminals, especially for those who develop attacks based on social engineering, arise. Currently, the whole world has its eyes glued to TV screens watching the London 2012 Olympic Games. Anti-malware and anti-virus solutions...
Rogue Antivirus advertised on 200000 hacked Web pages
Rogue Antivirus advertised on 200000 hacked Web pages The Websense has detected a new wave of mass-injections of a well-known rogue antivirus campaign, a new mass injection attack has infected over 200,000 Web pages, amounting to close to 30,000 unique Web hosts. The attack uses SQL injection...
Mozilla Fixes 11 Security Bugs in Firefox 7 Release
Mozilla has released Firefox 7, the latest version of its flagship browser, which includes a number of security fixes and other improvements. The new version is being touted as the fastest yet and also includes a new feature meant to conserve memory on users’ PCs. Firefox 7 was pushed out on...
Back-and-Forth to Continue Between Macdefender and Apple
There is a serious game of back-and-forth going on between the security team over at Apple and the developers of the Macdefender malware. As reported by Threatpost, Apple deployed a patch to remedy the troubling fake AV, then shortly after that, the developers of Macdefender altered their methods...
Malware and Spam Campaigns Related to Bin Laden Not Finding Many Takers
As has become their custom, attackers and malware authors jumped on the death of Osama Bin Laden Monday, using black hat SEO, Facebook scams and Twitter spam. However, unlike other recent major news events, the attempts to lure people into clicking on malicious links or downloading Trojaned files...
Real SEO Feeding Traffic to Fake Search Engines
Online scam artists are using black hat search engine optimization SEO techniques to push more than just malicious software. In fact, SEO is increasingly being used to drive traffic to a range of phony Web based search engines that are feeding cost-per-click advertising scams, according to a blog...
Black Hat SEO
This Google TechTalk features Julien Sobrier of Zscaler discussing the tactics and techniques that spam gangs use in constructing their black hat SEO campaigns...
Users Still Making Life Easy for Scareware Crews
Scareware and rogue AV programs have enjoyed a very good run in the last few years, making millions of dollars for their creators and generally making life miserable for victims. And while there’s been some innovation recently in the mechanisms attackers use to keep the programs resident on...
Pulling Back the Curtain on Rogue AV Tech Support
We’ve blogged a few times about rogue AV, explaining how search engines have been abused using Black Hat Search Engine Optimization techniques to redirect web surfers to rogue AV websites. Recently, we’ve noticed that the rogue AVs being spread are all equipped with an “Online Support” button. Se...
Moscow Bombings, TJX Hacker Spur Black Hat Campaigns
Spammers and malware writers have wasted no time in taking advantage of Monday’s bombings in Moscow, opening up a campaign on Twitter to point users to malicious sites. The pair of suicide bombings that hit the Metro system in Moscow Monday morning inevitably led to a flood of messages on Twitter...
Inside the Pay-Per-Install Malware Economy
Stevens provides considerable details on the methods and tools used by cyber-criminals, the seedboxes and crypters that are used to get around anti-malware detection and the clever black hat SEO Search Engine Optimization techniques used in social engineering attacks. An example of one affiliate...
MOSEB-15 Bonus: Vulnerability in Google Custom Search Engine
MOSEB-15 Bonus: Vulnerability in Google Custom Search Engine 22:57 15.06.2007 New bonus vulnerability in Google. In this case vulnerability not directly at Google’s site, like at MOSEB-15: Vulnerabilities at images.google.com, but in his search engine called Google Custom Search Engine also known...