Cloaking attack

Khuzaima Sheharyar asked on March 31, 2026 15:27

I'm facing cloaking attack on kentico 12. The site looks clean but I know there is something being responsible for this behaviour. any leads by anyone?

Correct Answer

Khuzaima Sheharyar answered on April 10, 2026 15:32

This was not related to Kentico, there was a dll in syswow64 which was causing the problem. I was able to pinpoint that file while scanning applicationhost.config. Thanks everyone for your inputs.

0 votesVote for this answer Unmark Correct answer

Recent Answers

Juraj Ondrus answered on March 31, 2026 15:35

Kentico 12 is not supported for more than 3 years already. I would recommend upgrading or migrating to a newer or supported product.

0 votesVote for this answer Mark as a Correct answer

Laura Frese answered on March 31, 2026 17:26

This is highly unlikely to be something that is related to the CMS and more likely related to how the solution was customized, implemented or hosted.

2 votesVote for this answer Mark as a Correct answer

Faisal Ahmed Rony answered on April 10, 2026 14:49

Cloaking attacks are a nightmare! Since it looks clean to you, hackers are likely targeting user agents. Check your web.config or index files for any hidden scripts or redirects. I’d also use Google Search Console to see exactly what bots are seeing. A full server security scan is a must. Good luck!

1 votesVote for this answer Mark as a Correct answer

   Please, sign in to be able to submit a new answer.