And then, after years of being conditioned to treat the first result as an ad, they skip over the link that's clearly labeled "whatever.com", instead clicking the second or third one down for "Get whatever here" and are phished by it.