A different angle of attack is to redirect only search engine crawlers to a different site. By doing this, they can make it look like the pages of a website moved to a new domain name. In general, when search engines find redirects like that, they will more or less pass the “value†that a page had on to the new URL — that generally also applies to Page Rank. So in a sense, they are trying to steal the value that a webmaster has built up over time. In this particular case, a “massive amount†of sites were hacked and likely redirected through suomi.co.in.