So yesterday I had a problem where people could not sign up to our forum, they either didn’t receive mail or were given this error message:
“Something went wrong, perhaps this email is already
registered, try the forgot password link”
Now since I was running a giveaway at the time, it was urgent to correct that, and with the guidance of @codinghorror I did a rebuild.
Two hours later I have this email in my inbox
Social engineering content detected on http://techweez[.]com/
To: Webmaster of http://techweez[.]com/,
Google’s Safe Browsing systems have detected that some pages on your site might be hacked or might include third party resources such as ads that are designed to trick users into installing malicious software or giving up sensitive information. To protect your site’s visitors, your site has been demoted in Google’s search results and browsers such as Google Chrome now display a warning when users visit your site.
Act now to fix this problem and remove the warning:
Identify compromised pages
Check the example URLs in the “Security Issues” page in Search Console. Note that this page displays a list of samples and not an exhaustive list of problematic URLs.
Remove the deceptive content
If you’re having trouble identifying and removing all the problematic content on your site, consider restoring an older version of your site. If you have ads on your site, ensure that they are not designed to trick or deceive visitors.
Secure your site from any future attacks
Identify and fix any vulnerabilities that caused your site to be compromised. Change passwords for administrative accounts. Consider contacting your hosting service to assist with the issue.
Request a security review
Only do this once you’re sure your site is free of problematic content. Include any details or documentation that can help understand the changes made to your site.
Request a review
Here is a sample of URLs from your site where we detected social engineering content:
What could be wrong and how can I correct it?