Hackers Create Subdirectories In WordPress For SEO Spam
WordPress remains much the best website creation tool, by far the most popular, as many sites and WordPress blogs are still and always coveted by hackers.
This is again the Sucuri Service reveals new tricks found by pirates of a different kind that would tend to use blogs and sites created in WordPress to launch SEO spam operation.
And, by maliciously creating sub-directories these sites, injection, to achieve their websites optimization goals to improve their own ranking on Google and other search engines.
You’ll understand that this is a black hat business SEO that is to use other sites to improve the ranking of their own sites or to earn more money with their affiliate programs.
The idea behind this black hat attitude is to abuse the resources and hosting for servers discreetly install spammy sites in subdirectories hacked WordPress sites.
The sites are usually spammed product promotion sites with the intention to earn more affiliate income.
What distinguishes this tactic other SEO spam tactics such as malicious redirects or degradations is that hackers do not change the appearance of the original hacked site.
The hackers cover their tracks by hiding their spammy sites in a subdirectory of the legitimate site, so that the website owner may never notice them. Have some type of system security controls in place on your WordPress site is a way to be alerted if such a thing happened to your website.
Sucuri also recommends use Google Webmaster Tools to easily detect if an attacker is train spam your WordPress site. Via Webmaster, if you see a large amount of requests that have no relation with the theme of your website or blog, begin to assume the worst.
To know that you are a victim of hacking SEO.
Certainly this n is not a perfect way for a rapid diagnosis of the situation, but it is still a good start. So start checking all directories and subdirectories of your website via FTP. And has been the site root.
Let us add that we speak here of WordPress sites, but it can easily happen to any other insufficiently secure site.