The challenge
A spam attack through a compromised WordPress plugin injected low-quality pages, causing ranking losses and a sharp traffic decline in a trust-sensitive space.
The approach
- Full technical and content audit for spam injection vectors
- Malicious pages removed and deindexed, clean indexation restored
- Backlink profile audited, toxic links neutralised
- Canonicalisation and crawl paths re-established
- Dev teams hardened the site against repeat exploitation
The results
- ~50% of pre-attack organic traffic recovered
- Thousands of spam URLs removed
- Core financial keyword rankings regained
- Organic lead flow stabilised