Malicious Redirects Pose Growing Threat to Websites and Users

Parked domains and problematic redirects are being exploited by bad actors, raising security and SEO concerns.

Published on Feb. 12, 2026

Got story updates? Submit your updates here. ›

The internet's evolution has brought new challenges, including the increasing prevalence of malicious content served through parked domains and problematic redirects. This trend is raising concerns for both website owners and internet users, as users clicking on seemingly harmless links can be unknowingly directed to phishing sites, malware downloads, or other harmful destinations. The issue also impacts SEO, as catchall redirects can negatively affect search rankings.

Why it matters

Malicious redirects leverage existing infrastructure, making it harder for users to identify threats. This trend not only poses security risks but also creates headaches for website owners trying to maintain SEO-friendly practices. The problem extends beyond individual websites, impacting services like alumni email forwarding and highlighting the broader need for vigilance regarding online security and data protection.

The details

Attackers are hijacking existing, often trusted, domains to serve up malicious content, rather than creating new malicious websites. This makes it more difficult for users to identify the threat. Catchall redirects, which forward any request to a single destination, are particularly problematic for SEO, as they dilute link equity and can be interpreted by search engines as manipulative. Websites hosted on Amazon S3 are also susceptible to redirect issues, requiring careful attention to redirect rules to maintain security and SEO-friendliness.

  • The University of Miami Information Technology department recently announced updates to its alumni email forwarding policies.

The players

Krebs on Security

A cybersecurity news website that reported on the significant number of parked domains serving up malicious content.

Practical Ecommerce

A website that highlighted the negative impact of 'catchall redirects' on SEO.

Amazon Web Services

The cloud computing platform that noted improper configuration of redirects on Amazon S3 can lead to unexpected behavior and potential security vulnerabilities.

University of Miami Information Technology

The department that announced updates to its alumni email forwarding policies, underscoring the need for ongoing maintenance and security considerations for established online systems.

Got photos? Submit your photos here. ›

What they’re saying

“We must not let individuals continue to damage private property in San Francisco.”

— Robert Jenkins, San Francisco resident (San Francisco Chronicle)

“Fifty years is such an accomplishment in San Francisco, especially with the way the city has changed over the years.”

— Gordon Edgar, grocery employee (Instagram)

What’s next

The judge in the case will decide on Tuesday whether or not to allow Walker Reed Quinn out on bail.

The takeaway

This case highlights growing concerns in the community about repeat offenders released on bail, raising questions about bail reform, public safety on SF streets, and if any special laws to govern autonomous vehicles in residential and commercial areas.