and even rogue anti-malware.
How to prevent typosquatting or URL hijacking?
One possible defense of typosquatting may be to buy variants of domain names that can be used by typosquatters. For example, the following variants of domain names can be considered :
- Replacement of the letter ‘O’ with the number ‘0.’
- Domain names with a missing dot (.) between www and the actual domain name. For example, wwwexample.com
- Singular and plural versions of domain names.
- Hyphenated and non-hyphenated versions of domain names.
- Domains with other domain extensions like .net, .org, .com, etc.
There are also a number of tools available that can suggest variants of domain names that can be typosquatted. One such tool can be found here.
Also, there are a number of tools available for detecting typosquatting. One such example may be Microsoft Strider. One can use the tools to mitigate the risks.
There are more ways to scam people on the Internet than ever before. We need to be aware of all these scams, stay educated, and use our common sense. Interested readers who want to know more about different techniques used by attackers in a phishing scam may want to refer to the book “Phishing: Detection, Analysis And Prevention.”
Security Fundamentals Practice Tests
The Security Fundamentals Practice Tests test one’s fundamental knowledge of cyber security. The practice tests are good for those who are preparing for various certification exams like the CCNA, CCNP, or CompTIA. They are also good for students and IT/security professionals who want to improve their understanding of cybersecurity.






0 Comments