Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

View all posts > 

Filtered by : Typosquatting

Can't Sleep? Let's Count a Typosquat Hive

Posted: 30 Jan 2013 07:27 AM | Carl Leonard


The Websense® ThreatSeeker® network has uncovered a typosquat hive hosting hundreds of hosts targeting well-known brands.  This hive constantly moves around to evade detection.  Numerous popular brands are being abused – can you spot the difference between these scam URLs and the real ones?

 

 

 

Upon further analysis we discovered a connection between those hosts:

 

  1. Most of them are hosted on the same IP address, 208.73.210.128.
  2. They lead to scam survey websites and spam websites.
  3. They attempt to circumvent detection and lie low by periodically shifting from serving threats to serving default parking pages without threats.
...

Read more > 

Filed under: ,

no comments

The rise of a typosquatting army

Posted: 22 Jan 2012 03:30 AM | uwang


The week before we published a blog that discussed typosquatting of social web sites that lead visitors to spam survey sites with a high Alexa ranking. With our on-going research, we discovered that cyber-criminals are carrying out even more work, and the campaign is more widespread than we originally...

Read more > 

Filed under: ,

no comments

A typosquat hostname list for Xmas

Posted: 08 Dec 2011 05:06 PM | Elad Sharf


A few weeks ago, we published a blog about typosquatting. This time, we're going to give an actual example of typosquat hosts found in the wild and show how typosquatting scams work. We'll take you through a typosquatting campaign that abuses tenth of known brands and includes thousands of registered...

Read more > 

Filed under: , ,

no comments

Typosquatting

Posted: 24 Oct 2011 08:42 PM | Devi


Do you often make mistakes when typing? Is the Backspace key your friend? Well, you are not alone! Most of us make typing errors once in a while, but what if those errors could cause data leakage? Typosquatting exploits common typing errors made when entering a Web address in a browser--typing “a”...

Read more > 

Filed under: , , ,

no comments