Simple Google search term could leave you open to hackers who will steal your details
by Robin Cottle, Bradley Jolly, https://www.dailyrecord.co.uk/authors/robin-cottle/ · Daily RecordGet the latest Daily Record breaking news on WhatsApp
Our community members are treated to special offers, promotions and adverts from us and our partners. You can check out at any time. More info
Experts have issued a stark warning that typing "Are Bengal cats legal in Australia" into Google could have serious consequences. Cybercriminals have hijacked the search term to gain access to computers, creating fake websites that can download malicious software, or malware, onto the searcher's device.
This malware can steal personal data, financial details and login credentials, as well as granting hackers remote access to the computer. The infected device can also help spread the software to others.
This so-called "poisoning" of search results was uncovered by cybersecurity company Sophos. Sean Gallagher, a cybersecurity researcher at the British firm, said: "When you do a Google search and it says 'there aren't very many good answers for this', that's an opportunity [for hackers]. They can say, 'OK, I'm going to build a website that appears to answer this question, and I'm going to use it for malicious purposes'."
Mr Gallagher noted, ironically, that Bengal cats were "very dangerous", adding: "So they're not very well regarded in Australia."
The hijacked search term is very niche, often with only thousands of searches, but it serves as an example of the wider technique of "SEO (search engine optimisation) poisoning," reports the Mirror.
Hackers target these terms due to the reduced competition to achieve a top-rated result from a search request.
Sophos, an Abingdon, Oxfordshire-based company, revealed that SEO poisoning has been prevalent since 2020, but "we've seen continued growth in this approach to initial compromise, with several massive campaigns using this technique over the past year". Hackers have also attempted to manipulate searches for popular software like Blender 3D, a graphics software programme, Photoshop, financial trading tools and programmes that provide remote access to computers.
To avoid falling victim to 'poisoning', it's advised to check the web address before clicking on a search result. Be wary of misspellings or unusual names and of sites that prompt unexpected downloads or request sensitive information.
Keeping your browser and operating system up to date is crucial as the latest version will attempt to block the most recent known gaps exploited by hackers.
Story SavedYou can find this story in My Bookmarks.Or by navigating to the user icon in the top right.