Google's new SGE feature promotes websites that use SEO-poisoning

For you safety, do not casually use the feature

Reading time icon 2 min. read


Readers help support Windows Report. We may get a commission if you buy through our links. Tooltip Icon

Read our disclosure page to find out how can you help Windows Report sustain the editorial team. Read more

Google's SGE feature on a Windows 11 background

Google’s new Search Generative Experience (SGE) feature uses AI to recommend similar sites to your query. However, the function could be more problematic because it features scam sites. Most of them have malware, and they will redirect you to fake giveaways, spam subscriptions, and unwanted extensions. Thus, if you use it, you could be tricked by the wrongdoers who exploit it to gain your trust, data, and access to your device.

How does SGE work?

The SGE feature makes searching for various content easier. It answers your questions and suggests follow-up queries to understand the topic better. Additionally, it showcases SEO-optimized sites with topics and keywords similar to your search. Unfortunately, cybercriminals discovered ways to exploit the Search Generative Experience feature and used search-poisoning techniques to get their articles featured. On top of that, the SGE feature will give you a limited amount of information to make you open the suggested sites.

Below, you can find an example from Lily Ray of how the Search Generative Experience works in favor of hackers.

What is search poisoning?

Threat actors usually conduct search poisoning campaigns. They make malicious websites and use SEO techniques to promote them. Also, most of them have similar goals. In addition, according to BleepingComputer, most websites showcased by the SGE are part of the same SEO poisoning campaign.

Some malicious sites use a feature similar to YouTube push notifications to make you subscribe and spam you with desktop notifications. Others will try to make you install extensions you don’t need. Some websites also try to sell you security software to gain affiliate commissions. They will also attempt to steal your data through random giveaways.

Ultimately, you could use security extensions and pop-up blockers to defend yourself from malicious websites if you want to use the SGE feature. Also, always doubt the AI. As you can see, it can generate problematic answers to your queries. So, until its official release, consider staying away from it. Hopefully, the anti-spam protections will work better for the official edition of the Search Generative Experience, especially since wrongdoers improve their techniques.

What are your thoughts? Are you going to use the SGE feature? Let us know in the comments.

More about the topics: AI, Google

User forum

0 messages