Google seems harmless, but Google content can actually be at risk of falling victim to hackers.
Cybersecurity experts have revealed common words and phrases you should never google if you want to avoid being hacked.
This comes after cybersecurity company Sophos issued an urgent warning on its website asking people not to type the six words into search engines: “Are Bengal cats legal in Australia?”
Jake Moore, Global Cybersecurity Advisor at ESET, said: explained to the Daily Mail A technique called “SEO poisoning” allows cybercriminals to use Google search results to trick unsuspecting victims into clicking on websites they control, weakening their computer security. is.
“SEO poisoning is a tactic used by cybercriminals to manipulate search engine results and direct users to malicious websites that often look genuine,” he said.
“When users click on these links, they are directed to sites that expose them to malware, which is often quickly downloaded, compromising their computer's security and potentially leading to data theft and device infection.”
Here are five words and phrases you should avoid typing into Google to avoid the risk of being hacked.
customer service number
It's easy to find a company's customer service phone number when doing a Google search, but scammers often buy ads that appear at the top of search results to trick unsuspecting people. is common.
These scammers provide misleading links and phone numbers that end up linking you to them instead of the desired company.
“They're taking these calls, sometimes hundreds of them a day, and they're convincingly imitating engineers,” said Ben Van Pelt, founder of a cybersecurity company. TorGuardI explained. indy 100.
To avoid this, experts suggest skipping the ads and going directly to the company's website to get their contact information.
money making search
Scammers prey on people who are in financial need and are looking for an “easy loan” with false advertisements offering easy and instant loans.
“Instead of asking Google for financial assistance, seek financial services from recognized banks and lenders,” Van Pelt advised.
Similarly, when we look for “get-rich-quick schemes” that promise “investment opportunities,” we often end up in pyramid schemes.
“Don't get caught up in a pyramid scheme. Always consult a reputable investment broker or financial advisor about investment opportunities,” he said.
Looking for “high-paying remote jobs” or “free credit reports” can also be dangerous.
“When looking for a job, be sure to use well-known job sites and official recruitment pages of reputable companies to minimize the risk of encountering scammers,” Van Pelt says.
Google Authenticator
Some cybercriminals try to imitate real products. Back in June, cybersecurity researchers at Malwarebytes said scammers were targeting users searching for the Google Authenticator app.
The app requires users to log into a secure service and provide two-factor authentication, but Malwarebytes said the hackers bought ads to promote what appeared to be legitimate links to the app. I discovered.
However, with these fake links, those who click “download” end up installing malware designed to plunder their devices for personal data.
“The core of the brand impersonation problem stems from ads appearing as if they come from official sources and the advertiser's identity being verified by Google,” Jerome Segura of Malwarebytes wrote in an article. said. blog post.
“It's important to note that Google Authenticator is a well-known and trusted multi-factor authentication tool, so potential victims are at risk while trying to improve their security posture. , that's ironic.
Sports mental toughness questionnaire
Cybercriminals are also known to target specific individuals or groups of people.
researchers menlo security While investigating a malware campaign called SolarMarker, they discovered that a very specific phrase had been compromised: “Sports Mental Toughness Questionnaire.”
The search resulted in a link to the PDF. The PDF was automatically downloaded to your computer and the downloaded virus was hidden on the page.
“that [SEO poisoning] It's often hard to find, but it's especially used by people who typically use Google to search for documents or PDFs rather than websites,” Moore explained. “It contains a dangerous link that can be automatically downloaded without your knowledge.”
If something is downloaded, he advises not to click on the file. Rather, remove it and run a virus scan “just to be safe.”
online viagra
Cybersecurity experts are warning people to be careful when searching for Viagra and similar products online to avoid falling victim to “pharmaceutical hacking.”
The hack involves scammers infiltrating vulnerable WordPress websites and embedding links to fake pages promoting knock-off versions of branded medicines.
“This way, people genuinely believe they are clicking on a legitimate website that sells legitimate medicines.” SolidWP researchers explained.
Once someone is brought to the site, scammers can trick them into giving out personal information or selling them fake medicines that can have negative health effects.
