Exercise caution when entering search terms into your internet browser, as it could lead to a hacking attempt.
According to the cybersecurity firm SOPHOS, searching for a particular phrase may jeopardize your security.
This unusual cyber threat targets a specific demographic, exploiting their curiosity about an otherwise typical subject.
As a result, SOPHOS has issued a critical alert on its website, advising users against entering six specific words into Google or other search engines.
“Victims are often enticed into clicking on malicious adware or links disguised as legitimate marketing, or in this case a legitimate Google search,” SOPHOS explained.
This is achieved through a technique called ‘SEO poisoning’, where hackers create deceptive links with high search engine rankings, causing them to appear prominently on the search results page.
Links that appear near the top are more likely to be clicked, as they are perceived as legitimate and widely used, providing hackers with an opportunity to exploit users.
What are the six words that could spell trouble?
‘Are Bengal Cats legal in Australia?’
Some individuals have reported that clicking on a link related to this search resulted in their personal information being compromised.
Through this method, hackers have accessed private emails of organizations, allowing them to retrieve the buyer’s contact information, purchase timing, and price.
Notably, these links typically do not show up unless the word ‘Australia’ is included, posing the greatest risk to residents of the country.
Once a user clicks on a search result, they risk having sensitive data like bank details stolen through Gootloader, a program capable of extracting information and locking users out of their computers, according to SOPHOS.
Although the topic of Bengal cats may not attract a large audience, the company emphasizes that its niche nature makes it an unexpected target for hacking.
SOPHOS highlights that cybercriminals are exploiting obscure Google searches using SEO poisoning.
The Daily Mail describes this as an ‘insidious technique in which criminals manipulate search engine results to push websites they control to the top of the page’.
SOPHOS advises that individuals suspecting they have fallen victim to SEO poisoning should promptly change their passwords.
The SOPHOS website states: “GootLoader is known for using search engine optimization (SEO) poisoning for its initial access. Victims are often enticed into clicking on malicious adware or links disguised as legitimate marketing, or in this case a legitimate Google search directing the user to a compromised website hosting a malicious payload masquerading as the desired file.
“If the malware remains undetected on the victim’s machine, it makes way for a second-stage payload known as GootKit, which is a highly evasive info stealer and remote access Trojan (RAT) used to establish a persistent foothold in the victim’s network environment.”
Being cautious about the links you click is crucial.