Such an original way of advertising hacker services became known only at the beginning of June 2023, but it seems that this scheme has been used for years. There is no conclusive evidence of this yet, but there is indirect evidence – some of the documents found have a date of creation and modification, and this, according to TechCrunch, may indicate that these files have been on servers for many years.
You can’t even dream of an even better result, because many companies often make incredible efforts to get their site at least one of the first ten lines of results for the desired search query.
Advertising documents assure that you do not need to pay to watch movies, and that no one will be interested in the bank card details of someone who wants to save money on going to the cinema and force him to register.
Of course, there aren’t any films on the links that scammers palm off on gullible users. They lead to extremely dubious third-party sites that many modern antivirus systems flag as malicious. However, not everyone uses antiviruses, plus the fact that the document is uploaded to the server of the European Union can reliably lull the vigilance of even the most sophisticated user.
Goldmine
The editors of CNews found on some hacker sites information about the possibility of uploading documents with any required content to the servers of the European Union, which will subsequently be displayed in the top lines of search results. Apparently, the administrators of these servers are already aware of the problem, since, according to TorrentFreak, one of the loopholes discovered by cybercriminals has already been closed. They uploaded documents to the EU’s Joinup website by creating new accounts, but this is currently not possible. This may be a temporary measure due to the recent influx of scammers. In addition, some downloaded PDF documents have already been removed from the servers.
However, nothing prevents hackers from doing the same trick with the sites of other states and government agencies. So, by setting a precedent, those who came up with the idea of using the EU site for their fraudulent purposes probably set an example for other cybercriminals.