Mini Spy

  1. Welcome to MalwareTips!
    MalwareTips is a free community where people like yourself come together to discuss and learn about PC security and computers.
    As a guest, you can browse and view the various discussions in the forums, but you can not create new threads or reply to an existing one unless you are a registered member. By joining our free community you will have access to post threads, start private conversations with other members, respond to polls, upload content and access many other special features.
    Registration is fast, simple and absolutely free, so please join us today!

    From 23 to 26 July get a free license key for Bitdefender Internet Security 2015. We are giving away Bitdefender Internet Security 2015 6 months license keys for our awesome members!

    Get now a Bitdefender Internet Security 2015 license key!

Typosquatting - what happens when you mistype a website name?

Discussion in 'Other Security Related Discussions' started by Prorootect, Jan 11, 2012.

  1. Prorootect

    Prorootect Well-Known Member

    Nov 5, 2011
    Likes Received:
    Trophy Points:
    Typosquatting - what happens when you mistype a website name? - topic for you ..

    Typosquatting - what happens when you mistype a website name?: on Naked Security

    'The experiment:
    We chose six domains: Facebook, Google, Twitter, Microsoft, Apple and, while we were about it, Sophos.

    To keep things simple but representative, we limited ourselves to typos of one alphabetic character in the company name: one letter omitted, one letter mistyped, or one letter added. Typos involving numbers or punctuation marks were ignored.

    We generated all possible one-character mistakes in the w w form of the above six domains. That produced 2249 unique site names, from w w, through w w, to w w'

    'Microsoft typosquats were at 61%, Twitter 74%, Facebook 81%, Google 83% and Apple at 86%. Clearly, there is a significant typosquatting ecosystem around high-profile, often-typed domain names.'

    'Google was the most commonly-abused brand, since it is trivial for a third-party site to present a Google-like search page and to use Google's search engine behind the scenes.'
    'This sort of brand abuse can generate revenue in several ways.
    By presenting sponsored links as organic search results, the fake site earns click-through revenue more readily. By mixing other revenue-generating links into real search results, the brand abusers can hide their inorganic and even unrelated links amongst otherwise-high-quality results.
    Of course, by visually presenting its so-called search engine as a well-known brand, the fake site doesn't even look like a typosquat.'

    'More than 560 of the 1502 pages (37%) in our test made use of DoubleClick [hmm, Google's ownership?..], which serves numerous domain parking businesses, including Bodis, Oversee, Sedo and Demand Media. You'll probably recognise the look of parked domains from these companies, as they pop up all over the internet, not just on typosquatting sites.'

    'If you find yourself somewhere you didn't intend due to a fat-finger error, don't be tempted to click through from the unexpected page, even if what you are apparently offered is a link to your intended destination.

    At the very best, typosquats which lead to parked domains are just aiming to make money out of nothing, by capitalising on your errors.

    At worst, typosquatters are trying to give you a false sense of safety, with the intention of misleading you further into unintended and possibly risky online actions.'


Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads: Typosquatting happens
Forum Title Date
Web-based Technology What happens to your social accounts after death Jun 30, 2014
News Archive What happens to your discarded old computer? Feb 3, 2014
News Archive As Expected, Nothing Happens At The UN (This Time, Over Internet Regulation) Dec 13, 2012
Other Security Related Discussions Symantec Honey Stick Project: What Happens to a Lost Phone Mar 12, 2012 is an independent website.All trademarks mentioned on this page are the property of their respective owners.