Hacked Server IP Range Penality?
-
I use a justhost.com reseller account to host about 15-20 of my own websites. None of the sites are related, nor do I interlink or do anything blackhat with any of them. All of the sites have unique content. Some of it isn't great, but I didn't use a writing service on any of then, it was all written by myself.
Recently I found a list of my sites (as well as about 200 others hosted by justhost) on a hacker website that listed the cpanel usernames. I alerted the host and the issue is being fixed. I am changing all of my usernames and passwords for all of the sites.
Anyway, I recently took a look at some analytics and rankings and noticed that I lost a lot of my rankings on a handful of those sites recently. I know there was the big de-indexing of junk blogs recently, but I don't think that is the case. I can still find all of my sites in Google, they are just out of the first 50 results, when a majority of them were ranked from 5-20 in the SERPs.
Here are three of the sites and their phrases:
http://nintendoconsoles.com/ "nintendo consoles" - This domain I bought from someone so there could be some sort of sandbox period for it.
http://webhostingfordrupal.com/ "web hosting for drupal" - This was a new register.
http://seotirical.com "seotirical" - we don't show up, but all of the tweets and links to us do. - This was a new register.
I realize these sites aren't perfect, and might not have been ready for the first page. The Nintendo site is about 3 months old, but the Drupal site has been around for 8+ months. I might try adding a fresh piece of content tonight to see if that helps, but I thought it was curious that it happened across the board with about 5-6 sites on my one reseller account. I don't even know if the top portion of this post has anything to do with the problems, but I thought I'd see if anyone has insight.
Cheers,
Vinnie -
Shane,
Thanks again for the response. I agree those pages aren't the strongest, and don't have a ton of great content. A few of my other sites have more than 2-3 articles, and the content is rich with media.
I guess time and content will tell. If after a few weeks of adding some new content and building a few links nothing has improved, I will start to worry. It just seems shocking that one of my sites that has been holding the 6th position for it's exact match phrase (and has some links/social) dropped completely out of the top 50.
The sites and pages are still indexed, but only come up when you search the exact URL.
Vinnie
-
by hit, do you mean de-indexed or just bumped down aggressively?
Cause the ones you gave seem to be affiliate sites, with thin content, and light design elements, so I can definitely see how these could have been devalued.
Here is the reason I am pretty sure it is not a "Hack Penalty"
First, I am not sure that exists - Google cannot interpret if you have been hacked or not, only if their is malicious intent on your site due to or after the hack.
And as to your password being readily available.. anyone could create a site like this, with passwords, and without google going through each page on the web like this, they would not know if it was real or not. (it is also very easy to brute-force or rainbow a commercial host)
This creates a whole new realm for Google as web avenger, as well as SERP integrity protector.
I am just not sure the password release could be involved.
UNLESS!
A penalty was leveraged against justhosts ENTIRE commercial subnet, due to a issue that was caused due to this password release.
But I do not think you or the sites would be singled out due to the password release, only if something bad enough happened that got Google's attention..
BUT then i believe you would be de-indexed, not de-valued.... (blacklisted)
hopefully this opinion was clear as mud
-
Shane,
Thanks for the input. I agree about securing down the site first. I have checked webmaster tools, and no messages are coming up. No suggestions at all are coming up.
I looked into it a bit more, and it seems like 90% of my sites on that one host were hit, but none of my other sites on different hosts were affected at all. I am gonna try to add a piece of fresh content to each site this week, and maybe get a few social signals. I am not panicking yet, but when I see that 10 sites have all lost all of their rankings (and aren't even showing up for their title tags), it's slightly concerning to me.
-
I believe they are coincidental...
I am not sure Google would take action on the entire Subnet range, for a password breach.
I believe it is only when malicious intent is found or suspected, and the release of passwords was not a malicious act in its own.
Check your Webmaster Tools for Malware messages, and see if there are any other messages. As say, you might have just fell victim to the latest round of quality checks from algorithm - You may have just been bumped -
The idea of first making sure you are protected - then trying to get some fresh content and social signal/links is probably the route I would take.
Shane
Got a burning SEO question?
Subscribe to Moz Pro to gain full access to Q&A, answer questions, and ask your own.
Browse Questions
Explore more categories
-
Moz Tools
Chat with the community about the Moz tools.
-
SEO Tactics
Discuss the SEO process with fellow marketers
-
Community
Discuss industry events, jobs, and news!
-
Digital Marketing
Chat about tactics outside of SEO
-
Research & Trends
Dive into research and trends in the search industry.
-
Support
Connect on product support and feature requests.
Related Questions
-
Our clients Magento 2 site has lots of obsolete categories. Advice on SEO best practice for setting server level redirects so I can delete them?
Our client's Magento website has been running for at least a decade, so has a lot of old legacy categories for Brands they no longer carry. We're looking to trim down the amount of unnecessary URL Redirects in Magento, so my question is: Is there a way that is SEO efficient to setup permanent redirects at a server level (nginx) that Google will crawl to allow us at some point to delete the categories and Magento URL Redirects? If this is a good practice can you at some point then delete the server redirects as google has marked them as permanent?
Technical SEO | | WillyGx0 -
Schema.org product offer with a price range, or multiple offers with single prices?
I'm implementing Schema.org, (JSON-LD), on an eCommerce site. Each product has a few different variations, and these variations can change the price, (think T-shirts, but blue & white cost $5, red is $5.50, and yellow is $6). In my Schema.org markup, (using JSON-LD), in each Product's Offer, I could either have a single Offer with a price range, (minPricd: $5, maxPrice $6), or I could add a separate Offer for each variation, each with its own, correct, price set. Is one of these better than the other? Why? I've been looking at the WooCommerce code and they seem to do the single offer with a price range, but that could be because it's more flexible for a system that's used by millions of people.
Technical SEO | | 4RS_John1 -
Please help me figure out if my website is penalized? It is not in the search result page for the phrase that is original to it.
I just searched Google for the phrase that is original to my website (yourappliancerepairla.com😞 "LG actually has a very large and well respected home appliances business", and Google didn't bring my website at all. Does this mean that my website is penalized?
Technical SEO | | kirupa0 -
How To Cleanup the Google Index After a Website Has Been HACKED
We have a client whose website was hacked, and some troll created thousands of viagra pages, which were all indexed by Google. See the screenshot for an example. The site has been cleaned up completely, but I wanted to know if anyone can weigh in on how we can cleanup the Google index. Are there extra steps we should take? So far we have gone into webmaster tools and submitted a new site map. ^802D799E5372F02797BE19290D8987F3E248DCA6656F8D9BF6^pimgpsh_fullsize_distr.png
Technical SEO | | yoursearchteam0 -
HTTP Vary:User-Agent Server or Page Level?
Looking for any insights regarding the usage of the Vary HTTP Header. Mainly around the idea that search engines will not like having a Vary HTTP Header on pages that don't have a mobile version, which means the header will be to be implemented on a page-by-page basis. Additionally, does anyone has experience with the usage of the Vary HTTP Header and CDNs like Akamai?Google still recommends using the header, even though it can present some challenges with CDNs. Thanks!
Technical SEO | | burnseo0 -
Hacking and security
Hi, we have had some of our sites hacked and i would like your advice on the situation. We pay a fair but of money for a dedicated server as we thought that by having a dedicated server it would make the sites secure. The language we use for our sites are joomla and wordpress but yesterday a few of them on the dedicated server were hacked. the hosting company have sent us the following info 'There is one extra security improvement on the system we may offer you and it is cloudlinux with cageFS. This improves the overall security on the server but will not stop unsecured code exploiting if such coding is present in your website scripts.' The hosting company is asking for an extra £20 a month to add this on. we asked the hosting company what they meant by unsecured code and they said: 'Unsecure coding is code in your scripts which will allow injections of files from external source. Unfortunately better explanation is not available and for any detailed information you may check with experience local web developer.' We thought that the sites would be secured. The hosting company have said that because one of the sites was not updated from joomla 1.5 to joomla 3.0 which we were planning to do this week, this is the reason why it has happened. However, this does not make any sense, as this is a dedicated server so why has the wordpress sites which are up to date been hacked when they are on the same dedicated server. any advice in understand more on this issue would be great, as i need to find out why this has happened and if i should be taking my sites to another hosting company
Technical SEO | | ClaireH-1848860 -
Does server location impact SEO?
Hi, I am about to purchase hosting for my WordPress site which is primarily targeting the UK and wondered if server location still has an impact on SEO? Also can anyone recommend a reliable hosting provider with CPanel?
Technical SEO | | Wallander0 -
How to de-index the server location of my website
Somehow my website is indexed by it's server location. So in addition to www.[example].com, it's also indexed like this: server123.[server name].com I have no idea how that happened. But, I was wondering, does anyone know how to de-index all the urls like this? I have a lot of urls indexed using my server's address. Thanks.
Technical SEO | | webtarget0