What is a Typosquatting attack?

A typosquatting attack is a type of cyberattack in which hackers try to create websites whose URL is as similar as possible to that of legitimate  and popular ones. Of course, the more popular and legitimate the URL, the greater the chances of success.

After analyzing several options and opting for the best one, the hacker would then proceed to design his new site. As mentioned before, his objective is to replicate as much as possible and as faithfully as possible, the content of the legitimate site taken as reference.

And then what?

The next step of a typosquatting attack is simply to wait and see.  Once all the previous work has been done, the hacker just waits.

But…wait for what?

Wait for the user to make a mistake, either because the characters on his mobile device are too small to see them correctly or because, due to haste, he enters a different character and voila!. It happens that instead of www.google.es he has entered www.gugle.es or www.gogle.es, coinciding with the url that the hacker had created.

Once the victim accesses the site, the look & feel is so similar to that of the legitimate one than nothing makes him suspect anything. The worst part comes when the victim enters some credentials or confidential information in the fake site. He thinks that he is providing that information to the legitimate site while, in reality, he is handing it over to the hacker.

Can a normal antivirus protect me against typosquatting attacks?

No. The ability of hackers to replicate, in detail, a legitimate site, along with the fact that due to its recent creation, the site may not have been categorized as malicious yet, calls into question the effectiveness of traditional methods or solutions against this type of attacks.

What would happen if, instead of using reactive or traditional approaches, we used RITech (Randed Isolation Technology)? Would typosquatting attacks happens? Would the hacker have the same chances of success?

The answer is no. Find out how to protect your business with Randed Isolation Technology and avoid running unnecessary risks.

Follow us on Twitter y LinkedIn to keep up-to-date with the latest news.