Phishing campaign targets SEO professionals' Google accounts

A new phishing campaign is targeting SEO professionals by using fake Google Ads that claim to be associated with Semrush. Cybercriminals are trying to steal Google account information through these ads. Researchers from Malwarebytes have identified this threat as part of a growing trend that seeks to access Google Ads accounts and create harmful advertising campaigns. Malwarebytes experts believe the attackers aim to use stolen accounts to run more scams. They have noted that this approach allows criminals to access sensitive information linked to Google accounts. This is especially concerning for users of Semrush, a software platform popular among marketers and advertisers. The phishing ads lead users to a fake website that closely resembles Semrush. These fake sites use slightly different domain names, such as “semrush[.]click” and “semrush[.]tech.” The fake login pages only allow users to sign in using “Log in with Google,” which prompts them to enter their credentials directly to the attackers. Many Semrush accounts are linked to Google services, meaning that the hackers can potentially access sensitive business data without actually breaching the Semrush accounts. Experts point out that Google's response to this issue has been slow, even though they are known to take down malicious ads once reported. To protect themselves, users are advised not to click on promoted results in Google Ads. They should directly bookmark and visit official sites to log in. Using password managers can also help, as they autofill credentials on verified sites only, enhancing security against these types of scams.