Searching For Hacking Software Leads to Vulnerable Spammy Sites

computer, internet, key, keyboard, My blog, social networking, type, typing, user generated content, web 2.0, identity theft, cyber, crime, theft, span, phishing, virus, network security, security management, information security, infosec, hacking, hacker,

Thousands of legit websites’ security has been compromised to secretly redirect the visitors, coming through specific search terms, to prospective fraudulent websites offering hacking schemes and services.

This was revealed in a recent investigation by one of the Malwarebytes researcher, Steven Burn, responsible for scrutinizing Facebook hacking frauds.

Those readers who are not aware of the current scenario, numerous scam, and fraudulent schemes continue to make rounds on the Internet that is targeted towards a large user base and individuals who are interested in finding ways to hack Facebook accounts or in search for Facebook hacking tools.

Malwarebytes reporter Jovi Umawing stated in a recent blog post that the security researcher get to know about this fraudulent scheme by performing a simple search on Google search engine, “hack facebook password,” which further revealed that all the links on search engine results page were redirecting him to a website name

trackphone  tk.

This page has a message that says, “This page was moved!” And just below this message is a button that says, “Go to new site>>>.” Furthermore, after clicking on the linked button provided in the website he was then redirected to a product page from

mspy  com.

Apparently, the search term “hack facebook password” is not the only one returning the links that are redirecting to the fraudulent websites. Further research by the Malwarebytes security team revealed that there are a number of search terms that are going to return some similar websites running fraudulent hacking schemes.

Here is a limited list of search terms:

Image credit: Malwarebytes

Researchers believe that there could be a lot more websites whose security has been compromised to host malicious redirecting script in an attempt to redirect targeted visitors to mSpy, the mobile spying software distribution website.

For those who are not familiar with mSpy, a notorious mobile-based software that is specifically developed for tracking and monitoring. This software offers a monitoring tool that is compatible with a wide range of devices and allows its user to remotely track and control activities on smartphones and computer systems. This tool enabled millions of people to spy on their kids and spouses’ activities and to catch them in the act.

Some highlighted features being offered by mSpy are:

  • WhatsApp, SMS, call logs, location tracking & 25 more features
  • Compatible with Android, iOS, Windows and Mac OS
  • Easily accessible from any browser
  • 24/7 multi-language support
  • 5 Minutes Installation

During the mid of the third quarter of this year, mSpy became a victim of serious hacking and user data of about 400,000 individuals and users were stolen from the servers, then later the data dump was leaked on the Dark Web, which is only accessible via Tor. The stolen data included Apple credentials, pictures, email messages, text messages, payment, and location data.

How To Protect Your Web Property

It is recommended that every web administrator should upgrade the software and tightens the security settings in order to secure their website and data servers from these hacking attempts, because recently it was reported that hackers are attacking vulnerable websites running outdated software to distribute ransomware.

Suggest ideas, report typos and corrections to [email protected] 

Related Posts