<ul><li>Cybercriminals target users who click on the first link in search engine results by promoting fake sites through Google Ads.</li><li>Google blocked 415 million ads in 2024 for rule violations, including scams, highlighting the scale of the issue.</li><li>Scammers create fake Semrush pages to phish for SEO professionals' credentials, using similar domain names and Google Ads for promotion.</li><li>Fake pages imitate legitimate sign-in processes to steal Semrush or Google account credentials.</li><li>Another tactic involves promoting fake Google Ads within Google Ads by leveraging Google Sites to create convincing phishing pages.</li><li>Google acted swiftly to remove these malicious sites from search results, but comprehensive solutions require proactive steps.</li><li>To protect against phishing attacks, organizations should encourage bookmarking trusted sites, conduct security awareness training, and implement multi-factor authentication.</li><li>It is recommended to deploy robust security solutions on all company devices to prevent visits to malicious websites.</li></ul>

Phishing through Google Ads: attacks on SEO and marketing

Discover more