Raising SEO security awareness
- Part 1 Raising SEO security awareness
- Part 2Actionable and effective technical SEO insights
Show Notes
-
01:12The intersection of SEO and securitySEOs and security teams often have different priorities and are unaware of each other's needs and challenges. Collaboration is key to overcoming obstacles like access restrictions and crawler limitations, highlighting the need for mutual understanding and cooperation.
-
08:51Security considerations for SEOsRegularly analyze log files, old subdomains, and how your site appears in the SERP for potential security risks and suspicious activity like the "pharma hack". Report any findings to the security team, even if unsure, to mitigate any potential security breaches.
-
14:07Website security risks and organic search traffic impactSecurity breaches, like the pharma hack, damage user trust and brand reputation, lowering click-through rates and search rankings. Additionally, broader security issues not directly related to SEO, like data leaks or misuse, still impact organic search traffic.
-
20:30URL manipulation and SEO vulnerabilitiesSEOs should be cautious of vulnerabilities in URL structures, as attackers can manipulate them to rank harmful or slanderous content on a website. Additionally, SEOs need to stay vigilant against techniques like injecting script tags via canonical tags.
-
23:31Recommendations for flagging security risksRaise questions about potential security risks to show awareness and build relationships with the security team. Promptly report illegal content, providing screenshots or demonstrations to illustrate the potential impact of identified security risks.
-
27:09Security resources for SEOsExplore resources like the "Darknet Diaries" podcast, which features interviews with white-hat hackers, and websites like KrebsOnSecurity for cybersecurity news and insights. Additional resources include Tom Anthony's “fuzzing” videos on YouTube.
Quotes
-
"If you think youve found illegal content, don't touch it. Just flag it immediately to somebody in the security or infrastructure team." - Chris Spann
-
"We run afoul of CloudFlare and DDoS protection all the time, highlighting the constant battle between SEO efforts and security measures." - Chris Spann
-
"There's often a disconnect between what SEOs want and the reasons behind security decisions, emphasizing the need for better communication." - Chris Spann
-
"SEO has many tools that allow us to notice things that might be of interest to the security team. If you find an issue, report it to them. The more you can do that with other teams, the easier it makes everyones life." - Chris Spann
- Part 1 Raising SEO security awareness
- Part 2Actionable and effective technical SEO insights
Up Next:
-
Part 1Raising SEO security awareness
Chris Spann, Senior Technical SEO at Lumar, delves into the rise of SEO security awareness. SEOs leverage a valuable arsenal of tools and insights that can uncover potential vulnerabilities in our websites. However, a communication gap between SEO and security teams often hinders collaboration, resulting in conflicting efforts that can impede progress for both teams. Today, Chris discusses raising SEO security awareness.
-
Part 2Actionable and effective technical SEO insights
Chris Spann, Senior Technical SEO at Lumar, delves into actionable technical SEO insights. Whether you're managing a massive enterprise site or a smaller-scale site, optimizing your website's technical SEO is crucial for organic growth and success. However navigating the world of crawling, fixes, and prioritization can be a daunting task without the right framework. Today, Chris discusses actionable and effective technical SEO insights.
Play Podcast
