Malwareaware

  • Subscribe to our RSS feed.
  • Twitter
  • StumbleUpon
  • Reddit
  • Facebook
  • Digg

Monday, 8 July 2013

Typosquatting: What it is and how to avoid it.

Posted on 06:30 by Unknown
This blog post will focus on Typosquatting. More specifically what it is and how you can avoid it.

Typosquatting at it's basest level is the act of taking advantage of common misspellings of an official website's domain name. Although the website that is doing the typosquatting may take the deception further by using the same domain name and then using a different Top Level Domain.

An example of these ways of typosquatting can be found below:

Say the real website is example.com

You use a common misspelling such as exemple.com

The result: You are led to a different website then the one you intended to go to.

Alternatively, the website can have the exact same spelling, but a different top level domain such as example.net or example.org

Once on the typosquatter's website, the user can be deceived into believing that he or she has arrived to the correct website through the use of copied logos, website layouts, or content.

There are sevral different reasons for a typosquatter to buy a typo domain. These include, but are not limited to:

Selling the domain to the person or company who owns the legitimate website for a large profit.
To generate pay-per-click revenue from misspellings.
To redirect the typo traffic to a competitor.
To redirect to the legitimate website. This generates commissions for the typosquatter through the company's affiliate program.
To block malevolent use of the typo domain by others.

And there are also ways that typosquatters can use a typo domain for purposes that are much worse then generating pay per click revenue.

A phishing scam to be used with websites where someone must log in. This scam intercepts passwords that a victim enters unsuspectingly.
To install drive by malware or revenue generating adware onto a victim's computer.
To harvest misdirected email messages mistakenly sent to the typo domain.

To avoid this, you have two options that combat the problem as a whole:

Check the spelling of the website you enter into the address bar before you press enter.
Install a browser add-on such as Web Of Trust that can show you the reputation of the website. This can only work for websites that are not new, but considering as the number of users of Web Of Trust is at 81.5 million and counting, odds are it will not be long before many people notice the typo domain for what it is.

Thanks for reading. I invite users to comment with any questions or comments.
Email ThisBlogThis!Share to XShare to FacebookShare to Pinterest
Posted in | No comments
Newer Post Older Post Home

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Popular Posts

  • How to remove System Doctor 2014
    There is a new rogue AV making the rounds on the web called System Doctor 2014. For those that have just started reading my blog or for thos...
  • What are Bitcoin Miners?
    For my first post about Bitcoins, and for what I wish to be my last about the subject, we are going to be talking about what Bitcoin miners ...
  • How to keep spies from monitoring you through your computer or your phone.
    Those of you in The United States of America have most likely heard about that whole IRS scandal and the accompanying scandals of wiretappin...
  • Spotlight on Malware: The Gruel Worm.
    It's been around since Windows 2000, but there still is not a way to remove this worm without formatting the hard drive. I speak of the ...
  • I am going to be a billionaire!
    For those of you that have been reading my blog for some time, you know I like to mess with scammers, fake tech support and the like. But th...
  • Use VBScript to pull a joke on your friends.
    Do you want to play a trick on your friends, family, or coworkers? Well this one's for you. You can make a fake piece of malware on your...
  • Spotlight on Malware: MyDoom
    The MyDoom Windows worm, also known as Novarg, and Shimgapi will be the subject of our focus for this post. The MyDoom worm was first discov...
  • CryptoLocker as of 11/3/2013
    If you have read my other posts on this, you know. But for those of you who do not, there is a piece of ransomware that has been making the ...
  • The Big Game: Who's on our side?
    I recently helped a friend of mine remove malware from their computer when she be one mused on how lonely my job must be. "It must be s...
  • Java: No more coffee for you.
    Odds are that every blogger that has a tight focus on computer security has authored a blog post about Java. So why am I wasting your time? ...

Categories

  • Android
  • History Of
  • iOS
  • Java
  • Macs
  • Passwords
  • Removal Guides
  • Spotlight On Malware
  • The CryptoLocker Saga
  • What Does It Mean?
  • What's in a name?
  • Windows

Blog Archive

  • ▼  2013 (151)
    • ►  November (10)
    • ►  October (5)
    • ►  September (15)
    • ►  August (22)
    • ▼  July (26)
      • Spotlight on Malware: ZeroAccess Rootkit.
      • Hitman Pro: What is it, and what does it do?
      • Posts of the Month: July 2013
      • To the spammers of my blog, past, present, and fut...
      • How to remove Attentive Antivirus (Rogue)
      • Explaining the fine line between Annoying Software...
      • Malware Now Taking Advantage of Royal Baby News.
      • How to remove the New Zealand E-Crime Lab Ransomware.
      • Mac OS X Ransomware going global.
      • How to remove the Ministry of Public Safety Canada...
      • How the web works: The Technology
      • How the web works: The History
      • How to remove the SweetPacks/SweetIM toolbar.
      • F.B.I. Ransomware now targeting Mac OS X
      • How to remove the Mandiant U.S.A. Cyber Security R...
      • How to remove Antivirus System (Rogue Antivirus)
      • First Q&A session details.
      • What to keep in mind when choosing your antivirus ...
      • My opinion of Data Dealer.
      • Spotlight On Malware: The Koobface Worm
      • Back To Basics.
      • Typosquatting: What it is and how to avoid it.
      • My opinion of Microsoft Windows Defender.
      • Spotlight on Malware: The Happy 99 worm.
      • Symbiosis in malware
      • Spotlight On Malware: Zeus
    • ►  June (17)
    • ►  May (25)
    • ►  April (15)
    • ►  March (7)
    • ►  February (6)
    • ►  January (3)
Powered by Blogger.

About Me

Unknown
View my complete profile