Scareware attacks highlight the latest changes in the Google algorithm

PandaLabs recently highlighted a sophisticated attack by spammers who targeted hundreds of keyword phrases relating to Ford cars using over a million links from trusted sites. Their aim is to flood the Google rankings with malicious sites so users searching for a phrase such as “Ford Uk” are presented with a list of sites which look authentic except for telltale URLs which consist of random numbers and letters and a “.pl” Polish domain.

When a user clicks on one of the results, malicious software is installed and the user is prompted to pay money to buy ‘security’ software to remove it.

The whole episode illustrates how Google has changed their algorithm from the ‘Florida Update’ era, where a sudden influx of incoming links raised a red flag. With the advent of social networking, social bookmarking and sites built around user-generated content, Google now needs to trust these sudden bursts of new links, but it isn’t always good at spotting where the algorithm is being fooled by spammers manipulating these trusted sites.

For search engine optimisation companies, this highlights the importance not only of links from user-generated content sites, but more specifically that sudden increases in link volumes from trusted sites with ‘fresh’ content no longer incurs the wrath of Google and now does the exact opposite. Even for blackhat SEO’ers and spammers.