Communications of the ACM

Home/News/Hackers Exploit Websites to Give Them Excellent SEO.../Full Text

ACM TechNews

Hackers Exploit Websites to Give Them Excellent SEO Before Deploying Malware

By ZDNet
March 11, 2021
Comments

View as: Print Mobile App Share:

A hacker at work. — Cyberattackers have turned to search engine optimization techniques to deploy malware payloads to as many victims as possible.

Credit: searchenginejournal.com

Cybersecurity researchers at Sophos have found that hackers are using search engine optimization to push compromised websites higher up Google's rankings and more widely deploy malware payloads.

The "Gootloader" technique involves deploying the injection framework for the Gootkit Remote Access Trojan, which researchers said would require the maintenance of a network of 400 or more servers at any given time.

The researchers said hackers are gaining access to websites' content management systems via malware, stolen credentials, or brute-force attacks, after which they insert a few lines of code into the body of website content.

The compromised websites are manipulated to answer specific search queries, displaying fake message boards with posts containing an answer to the query and a direct download link.

Gootloader is being used to deploy malware variants including the Gootkit banking Trojan, Kronos, Cobalt Strike, and REvil ransomware in the U.S., South Korea, Germany, and France.

From ZDNet
View Full Article

No entries found

Hackers Exploit Websites to Give Them Excellent SEO Before Deploying Malware

OpenAI Gives ChatGPT a Better 'Memory'

Dear Diary

Unlocking the Potential of Zero-Knowledge Proofs in Blockchain