SEO Poisoning - Geek Feed

Fake Microsoft Teams installers push Oyster malware via malvertising

October 1, 2025October 1, 2025 geekfeed0Tagged Backdoor, Malvertising, malware, microsoft, Microsoft Teams, SEO Poisoning

Hackers have been spotted using SEO poisoning and search engine advertisements to promote fake Microsoft Teams installers that infect Windows devices with the Oyster backdoor, providing initial access to corporate networks. The Oyster malware, also known as Broomstick and CleanUpLoader, is a backdoor that first appeared in mid-2023 and has since been linked to multiple campaigns. […]

2 mins read

Cybercriminals exploit AI hype to spread ransomware, malware

June 1, 2025June 1, 2025 geekfeed0Tagged ai, Artificial Intelligence, Malvertising, ransomware, SEO Poisoning

Threat actors linked to lesser-known ransomware and malware projects now use AI tools as lures to infect unsuspecting victims with malicious payloads. This development follows a trend that has been growing since last year, starting with advanced threat actors using deepfake content generators to infect victims with malware. These lures have become widely adopted by info-stealer malware operators and ransomware operations attempting to […]

3 mins read

Bumblebee malware distributed via Zenmap, WinMRT SEO poisoning

May 27, 2025May 27, 2025 geekfeed0Tagged Bumblebee, Malware Loader, Nmap, SEO Poisoning, WinMRT, Zenmap

The Bumblebee SEO poisoning campaign uncovered earlier this week abusing the RVTools brand is using more typosquatting domains mimicking other popular open-source projects. GeekFeed was able to find two cases leveraging the notoriety of Zenmap, the GUI for the Nmap network scanning tool, and the WinMTR tracerout utility. The Bumblebee malware loader has been pushed through at least two […]

3 mins read

Amazon and Audible flooded with ‘forex trading’ and warez listings

November 21, 2024November 21, 2024 geekfeed0Tagged amazon, Amazon Music, Audible, forex trading, pirated software, SEO Poisoning, Spam, telegram channels, Trading, Warez

Amazon, Amazon Music, and Audible, an Amazon-owned online audiobook and podcast service, have been flooded with bogus listings that push dubious “forex trading” sites, Telegram channels, and suspicious links claiming to offer pirated software. Amazon listings promote illicit sites Yesterday, GeekFeed reported how threat actors were abusing Spotify playlists and podcasts to promote pirated software and game cheats. The […]

4 mins read

Over a thousand online shops hacked to show fake product listings

November 1, 2024November 1, 2024 geekfeed0Tagged Credit Card, Data Theft, E-Commerce, Fake, Fraud, Hacked, online shops, phishing, Scam, SEO Poisoning

A phishing campaign dubbed ‘Phish n’ Ships’ has been underway since at least 2019, infecting over a thousand legitimate online stores to promote fake product listings for hard-to-find items. Unsuspecting users clicking on those products are redirected to a network of hundreds of fake web stores that steal their personal details and money without shipping […]

3 mins read