Cybercriminals getting dangerously organised with black hat SEO

Cybercriminal

This year, we've seen cybercriminals putting together sophisticated ransomware operations with the likes of staffed helpdesks to help victims pay up, and there is further evidence of high levels of organisation in terms of criminals conducting black hat SEO (search engine optimisation).

This is according to a new Hacker Intelligence Initiative report published by security firm Imperva, which found evidence of a long-term black hat SEO campaign (that started late last year) using botnets to promote dodgy websites.

Black hat SEO involves the attackers compromising target websites and then using them to pump up the Google rankings of the web pages of their paying customers (apparently these are mostly online pharmaceutical stores or malware serving sites of one kind or another).

Imperva observed that the attackers gain access to the CMS (content management system) of the compromised website and inject links pointing to their dodgy sites, giving these illicit pages more 'Google juice' and making it more likely people will see and visit them.

During the period covered by the report, the company found that in excess of 700 hosts were used by the monitored botnet to launch SQL injection and HTML link injection attacks.

Automated attacks

Amichai Shulman, co-founder and CTO of Imperva, commented: "Automatic attack tools, known as malicious bots, are deployed every second to achieve widespread attacks on websites, and more sophisticated attackers use a distributed network of bots to launch attacks.

"While it is common to see many variations on the same attack vector comprise these campaigns – such as comment spam used to improve rankings of promoted sites – it is unusual to identify a multi-faceted, long-term campaign run with coordination from the same botnet in the wild."

Obviously if your website is compromised in such a manner, your visitors will likely be less than impressed particularly if bits of your site are broken by the intrusion, as can happen – furthermore and as Imperva notes, you're likely to suffer damage to your reputation.

Not to mention the prospect that these initial forays "can test the water for more serious attacks to come", Shulman warns, and precious business data could ultimately be at risk. As ever, particularly with cybercriminals becoming increasingly more organised, it pays to keep a close eye on website security.

Via: Computer Weekly

Darren is a freelancer writing news and features for TechRadar (and occasionally T3) across a broad range of computing topics including CPUs, GPUs, various other hardware, VPNs, antivirus and more. He has written about tech for the best part of three decades, and writes books in his spare time (his debut novel - 'I Know What You Did Last Supper' - was published by Hachette UK in 2013).

Latest in Security
Hacker silhouette working on a laptop with North Korean flag on the background
North Korea unveils new military unit targeting AI attacks
An image of network security icons for a network encircling a digital blue earth.
US government warns agencies to make sure their backups are safe from NAKIVO security issue
Laptop computer displaying logo of WordPress, a free and open-source content management system (CMS)
This top WordPress plugin could be hiding a worrying security flaw, so be on your guard
Computer Hacked, System Error, Virus, Cyber attack, Malware Concept. Danger Symbol
Veeam urges users to patch security issues which could allow backup hacks
UK Prime Minister Sir Kier Starmer
The UK releases timeline for migration to post-quantum cryptography
Representational image depecting cybersecurity protection
Cisco smart licensing system sees critical security flaws exploited
Latest in News
Ray-Ban Meta Smart Glasses
Samsung's rumored smart specs may be launching before the end of 2025
Apple iPhone 16 Review
The latest iPhone 18 leak hints at a major chipset upgrade for all four models
Quordle on a smartphone held in a hand
Quordle hints and answers for Monday, March 24 (game #1155)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Monday, March 24 (game #386)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Monday, March 24 (game #652)
Quordle on a smartphone held in a hand
Quordle hints and answers for Sunday, March 23 (game #1154)