Andrew McGarry
28K posts


We’ve been continuing to improve how we show links in our AI features in Search, to make it easy for people to click to websites. One of my personal gripes (as the team knows!) is whenever I can’t easily find a link for something I want to go deeper on. As we’ve continued to iterate, we’re now sending billions of clicks to websites every week through AI features in Search alone. We’re not done with this work – we recently added the ability to connect your subscriptions and select preferred sources, and have more to come!





Scoop: The AI music generator Suno was hacked. Hacker shared source code that shows how the tool was made and part of the music and podcasts that were scraped to create it. Decades worth of music, lyrics, and podcasts from YouTube, Deezer, Genius & more

Google’s Mueller On First Link Priority & Link Obfuscation via @sejournal, @MattGSouthern - brought to you by your handy #seo helpers @Sitebulb 😊 searchenginejournal.com/googles-muelle…

PHISH ALERT: Impostor League — Fraudulent FIFA World Cup 2026 Recruitment Campaigns Spoof Booking & Calendar/Survey Flows As anticipation builds for the 2026 World Cup, threat actors are shifting their sights from ticket buyers to hopeful job seekers. We are tracking a highly polished recruiting and survey scam that impersonates official FIFA HR and Talent Acquisition teams, weaponizing calendar-booking and fake survey workflows to harvest credentials and steal PII. Because candidates are in application mode they expect to share resume data and book interviews making them incredibly vulnerable. Here is how the threat actors are running this operational matrix: The Outreach: Targets receive highly customized emails spoofing legitimate recruitment communications. The senders abuse AWS application services and third-party desk platforms (e.g., worldcup2026fifa[.]awsapps[.]com and fifa-jobs[.]us2[.]desk365[.]com) to slip past standard domain SPF/DKIM filters. The Booking Bait: The email bypasses standard attachments and instead presents a "low-friction" call to action, urging the victim to click "View Calendar Availability" or "Select a time here" to set up a preliminary interview. Redirection & Fingerprinting: Clicking the button redirects the victim through transactional tracking links (like cl[.]s13[.]exct[.]net) onto highly convincing, branded landing pages like fifahiring[.]com or fifa-careerhub[.]com. The SSO Phish: To finalise the "interview slot" on the fake scheduling portal, the victim is prompted to authenticate via Google or Microsoft Single Sign-On ("Continue with Google"). The moment they attempt to sign in, their corporate or personal login credentials are harvested. Card Harvesting: On the survey track, the landing page displays fake Facebook-style comment sections featuring dynamic "satisfied winner" testimonials to build instant trust. Once the survey is completed, the kit redirects victims to a payment gateway (otakusignalflow[.]com) to cover a nominal "shipping fee" of €2.35 capturing raw credit card numbers, CVVs, and expiration dates in real time. IOCs TO MONITOR AND BLOCK worldcup2026fifa[.]awsapps[.]com fifa-jobs[.]us2[.]desk365[.]com fifa-careerhub[.]com fifahiring[.]com nowsearchnet[.]com Canadiansoccerleague[.]org hxxp://theresultsearch.com/ Cl[.]s13[.]exct[.]net fifaworldcup-jobs[.]com manidharipharma[.]online Visionspace[.]cfd grupotrabajopn[.]info #ThreatIntel #Phishing #FifaWorldCup #RecruitingScams #IOC #CyberSecurity #FIFA #scam

The evergreen content model that powered publishing/content marketing for 25 years is collapsing, and the the most interesting work in search is not coming from brands, but rather from individuals. Read the full article: hubs.li/Q04pk5gF0

We're extending Claude Fable 5 access on all paid plans, as well as keeping Claude Code’s weekly rate limits 50% higher, through July 19.










