Please do a search for the keyword “PCH” in the past hour on google. There are thousands of hacked machines MANY ON Cloudflare that are flooding my niche with spam. The keyword “PCH” seems to be one of the easiest to find these. See here:
Look for any of the domains that have a non www subdomain and a weird extension on them.
Can Cloudflare do something to prevent this from happening? There should be an easy pattern. I can paste over 1,000 links in the past week if you would like to help with investigation.
Well, if I had access to see how these were being setup… maybe the action they need to take is to stop or prevent that way for these to be created. Maybe a Simple Captcha on a specific part?
They could also do things like determine new traffic to a newly created subdomain and alert the cloudflare customer of a potential security breach and use basic preg_match rules to determine these links.
There is lots of things that can be done, but none of them involve doing nothing.
I thought this needs to be brought to your attention.
Because Google does not work with IP address, but thats really not relevant for this.
The question is, which action should Cloudflare do and based on what. If these sites contained dubious software Cloudflare could suspend it (respectively Google will include them in the Safe Browsing list). As that does not seem to be the case there is little anyone can do.
Maybe Google provides some tool to report such sites to them, but that would be a question for Google.
So just to confirm, it is OK for Cloudflare customers to create Spun Text and get it indexed on Google and Cloak the Link to an affiliate offer. This is Google’s problem and they should fix it on their end?
You will need to click from Google for any of them. If you try the first link I sent, clicking on a few you should find one. If you don’t come from Google or a search engine, many times will see a 404 page. It’s all cloaked traffic.