Phishing site operators are now making use of a special class of illegal search engine optimization tactics to get their pages displayed above legitimate websites in search results.
Researchers with security company Cybersixgill said these "black hat SEO" practices have become so popular that those who practice the skill are able to sell their services on dark web hacking forums for anywhere from $70 to $500 per month to phishing site operators.
Unlike normal SEO techniques, which operate within the guidelines set by search engines, the black hat SEO practitioners break rules set by Google and Microsoft to game the system and get phishing pages listed higher.
Cybersixgill dark web analyst Adi Bleih told SearchSecurity that some of the dirty tricks phishing attack perpetrators use include stuffing keywords, redirecting links from other sites and making use of paid links.
"The difference is that black hat SEO are tactics that are used to rank a website that violates search engine guidelines," Bleih said. "Legit SEO focuses on creating the best result on the web, not just making it seem as though it is."
As a result, the phishing sites become far more effective at luring users to their pages, and harvesting credentials and login information. While the sites do run the risk of being caught and delisted by the search engines for breaking SEO rules, the added traffic is worth it for the phishing site operators if correctly balanced.
"In this case, it's the threat actor's...
Read Full Story: https://www.techtarget.com/searchsecurity/news/252516457/Phishing-attacks-benefiting-from-shady-SEO-practices
Your content is great. However, if any of the content contained herein violates any rights of yours, including those of copyright, please contact us immediately by e-mail at media[@]kissrpr.com.
