Massive AdSense fraud campaign infects 10,000+ WordPress sites
By MYBRANDBOOK
The threat actors behind the black hat redirect malware campaign have scaled up their campaign to use more than 70 bogus domains mimicking URL shorteners and infect over 10,800 websites. The campaign is said to have been active since September last year and is orchestrated to redirect visitors to compromised WordPress sites to fake Q&A portals. The goal is to increase the authority of spammy sites in search engine results.
"The main objective is still ad fraud by artificially increasing traffic to pages which contain the AdSense ID which contain Google ads for revenue generation," Sucuri researcher Ben Martin said in a report published last week.
The details of the malicious activity were first exposed by the GoDaddy-owned company in November 2022.
What makes the latest campaign significant is the use of Bing search result links and Twitter's link shortener (t[.]co) service, along with Google, in their redirects, indicating an expansion of the threat actor's footprint.
"It's possible that these bad actors are simply trying to convince Google that real people from different IPs using different browsers are clicking on their search results," Sucuri noted at the time. "This technique artificially sends Google signals that those pages are performing well in search."
Though it is not known precisely how the WordPress sites become infected in the first place, but once the website is breached, the threat actor injects backdoor PHP code that allows for persistent remote access as well as redirect site visitors.
Microsoft to build a new data centre to support Thailand's tec
Microsoft has revealed intentions to construct a regional data centre as w...
SAP launches cloud services to help Indian scaleups innovate m
SAP at SAP unveils now "GROW with SAP for Scaleups," a new cloud service d...
Denodo and Sonata form alliance to unlock data-to-value creati
Denodo and Sonata Information Technology India Limited (SITL) have annou...
Google Play Store will now let users download two apps simulta
Google Play Store now lets users download two apps simultaneously. While a...
FRESHWORKS TECHNOLOGIES PVT. LTD.
SAMRIDDHI AUTOMATIONS PVT. LTD.
CP PLUS INDIA PVT. LTD.
DIGISOL SYSTEMS LTD.
Technology Icons Of India 2023: Ritesh Agarwal
Ritesh Agarwal Founder & CEO of OYO Hotels & Homes-World’s fastest g...
Technology Icons Of India 2023: Bhavish Aggarwal
Ola CEO Bhavish Aggarwal had formed Ola-India’s largest mobility pla...
Technology Icons Of India 2023: Honorary Prof. N. Balakrishnan
Prof. N. Balakrishnan is an Indian aerospace and computer scientist. H...
STPI encouraging software exports from India
Software Technology Parks of India (STPI) is an S&T organization under...
EESL encouraging e-mobility adoption across India
Energy Efficiency Services Limited (EESL) is a Super Energy Service Co...
CERT-IN protecting the cyber security space of India
CERT-In serves in the area of cyber security threats like hacking and ...
BEETEL TELETECH LTD.
: Beetel is one of the oldest and most reputed brands in the Industry,...
Crayon Software Experts India Pvt Ltd
Crayon helps its customers build the commercial and technical foundati...
INFLOW TECHNOLOGIES PVT. LTD.
Inflow Technologies is a niche player in the IT Infrastructure Distrib...