BTW, I agree with Jason that there’s nothing wrong with the search results you showed. The ordinary behavior for any search is that Google will show, at most, two search results from any one website. If people want to see more results from a particular, that’s why they have the “More results…” link.

However, his other comments are more a sales pitch than anything else, because his fear-mongering about “poisoning” Google search results is just nonsense. Get in touch with him, indeed. I would also challenge the assertion that there is any significant connection between security and SEO. (I would love to have more of a discussion of this, re: your mention of web app security) SEO is marketing, plain and simple, and any attempt to make it seem more technical or geeky or mysterious is just self-aggrandizement. Beyond a basic knowledge of how the internet works, how websites are built, etc (which I would be embarrassed to say was technical to someone who, say, actually writes code), it’s just a marketing exercise.

I won’t go into specifics here but there is much cross over from SEO -> security in being able to rank as well as from security -> SEO in being able to propogate.

I’ll stop now but I am sure everyone reading this (whether an experienced SEO or security professional) understands to what I am referring.

Although, SEO is considered a taboo topic in some security circles, I can clearly see its importance to web application security. I am particularly interested in shaping web traffic in terms of fiddling with RSS feeds, spawning related blogs, etc.

IMHO, If attackers know how to use and abuse search engines, the damage they can cause is greater then what we can imagine. I am most definitely interested in continuing this topic.

I work as an SEO and overall am pretty good at it

From the example you gave, grepblogs.com within the screenshot I think it is nothing more than a site that mentioned a post(s) from here and whilst being crawled also had a DB connection issue.

They deserved to rank due to the inbound links and domain status the site / pages had obtained and were relevant to the search query of (I presume “gnucitizen”)

There is definately no poisoining going on from the limited information in your post, but Google poisoning is definately possible, happens and is managable by many with the knowledge of how G works in practice. If you want to discuss it more feel free to get in touch

As you kept your rankings, that must mean google was using the cached version of your pages.

Still it is kind of weird, maybe google was using a mix of your cached keywords and the new error message.

If you are right about all this – it would be pretty easy for spammers to steal keywords and make huge profits.