Heimadal Security

JANUARY 26, 2023

SEO poisoning attacks have been on the rise in recent years, as more and more people are using search engines to find information online. Attackers are constantly coming up with new ways to exploit SEO vulnerabilities, so it’s important to be aware of the risks and take steps to protect yourself.

Network Security 104

Network Security Engineering Risk Cybersecurity 104

eSecurity Planet

OCTOBER 29, 2021

Cybercriminals leveraging the SolarMarker.NET-based backdoor are using a technique called SEO poisoning to drive malicious payloads into victims’ systems so they can gain access to the credentials and data within. If they click on the SEO-poisoned link, they see a malicious PDF on the page.

Malware 109

Malware Ransomware Antivirus CISO 109

Heimadal Security

JUNE 15, 2021

Microsoft noticed a wave of cyberattacks that use SEO poisoning, also known as search poisoning, to deliver a remote access trojan (RAT) employed by cybercriminals to steal private information from the infected systems.

Malware 71

Malware Engineering Cybersecurity 71

Malwarebytes

AUGUST 23, 2023

Unlike previous similar attacks, the final payload was packaged differently and not immediately recognizable. Since the malware's obfuscation and encryption features have been recently documented by other researchers, we will focus on two of its web delivery methods, namely the use of malicious ads and search engine poisoning.

Engineering 98

Engineering Malware Encryption Advertising 98

Heimadal Security

JANUARY 12, 2023

Recently, Australian hospitals have been hit by a wave of Gootkit malware loader attacks that leverage legitimate software like VLC Media Player as cover. To get initial access, Gootkit (also known as Gootloader) is reported to use search engine optimization (SEO) poisoning techniques.

Healthcare 86

Healthcare Malware Media Engineering 86

Security Affairs

MAY 7, 2023

The attack consists of a clean application, which acts as a malicious loader, and an encrypted payload. How the user first encountered the site, whether through phishing or SEO poisoning or some other method, is beyond the scope of this investigation.” The experts observed various modifications of components over time.

Malware 94

Malware Cryptocurrency Encryption Phishing 94

CyberSecurity Insiders

FEBRUARY 2, 2022

HEAT attacks are a class of cyber threats targeting web browsers as the attack vector and employs techniques to evade detection by multiple layers in current security stacks including firewalls, Secure Web Gateways, sandbox analysis, URL Reputation, and phishing detection.

Cloud Migration 52

Cloud Migration Malware Phishing Security Defenses 52