Cybercrime Comedy: Gambling with IIS Servers in a Global SEO Scam!

A Chinese-speaking cybercrime group is turning trusted IIS servers into the internet’s seedy underbelly, redirecting users to shady ads and gambling sites. Dubbed UAT-8099, they’re exploiting reputable servers for financial gain. With a focus on mobile users, they’re ensuring your online detour is more “casino royale” than “search engine results.”

3P
Published: October 3, 2025 3:08 pmAdded: October 3, 2025 at 8:20 amAssembled by: The Editor
Pro Dashboard

Hot Take:

It seems the UAT-8099 cybercrime group decided they weren’t satisfied with just being hackers—they wanted to be internet moguls too! By hijacking trusted IIS servers, they’ve taken a page right out of the playbook of SEO ninjas everywhere. Who knew that the dark web had its own version of Silicon Valley? Maybe we’ll see them pitching at the next tech startup conference. Just imagine: “We turn your trusted servers into cash-earning machines… for us!”

Key Points:

  • Cisco Talos discovered the UAT-8099 group hijacking IIS servers for SEO scams.
  • Compromised servers redirect users to shady ads and illegal gambling sites.
  • Targets include organizations in India, Thailand, Vietnam, Canada, and Brazil.
  • The attacks primarily focus on mobile users, including both Android and iPhone devices.
  • New BadIIS malware samples were identified with similarities to a 2021 variant.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?