Many hackers use compromised websites to create rogue pages that abuse their search rankings to drive traffic to spam content. In one case, a webmaster found over one hundred "verified owners" listed in his console, the Sucuri researchers said in a blog post. Such abuses are actually increasingly common, according to researchers from Web security firm Sucuri, who have seen many webmasters complaining on technical support forums about rogue owners showing up in their Google Search Console. Therefore, they can use such flaws to verify themselves as new website owners in the Google Search Console by creating the needed HTML files.
#Google webtools admin code
However, many of the vulnerabilities that allow attackers to inject malicious code into websites also give them the ability to create rogue files on the underlying Web servers. Getting verified as a website owner in the context of the Google Search Console can be done in different ways, but the easiest is to upload an HTML file with a code that's unique for every user into the website's root folder. The owner, the site administrator and the search optimization specialist can, and often are, separate individuals and they can all benefit from the Search Console data in their respective roles. That's not unusual because running a website usually involves multiple people. Google allows more than one person to claim ownership over a website in his or her own Search Console accounts. Users who click on links in search results that lead to websites hosting malware or spam will receive scary warnings until those websites are cleaned by their owners.
That last part is very important, because website infections can quickly lead to lost traffic and reputation.
0 kommentar(er)
