Welcome to #WeekendWisdom number 65. This week we’re going to talk about Typosquatting.
Typoquatting? What’s that now?
What is typosquatting? People are generally very bad at reading and understanding links they receive to websites and lots of people experience this.
Can you give me an example?
So for example if you were to go to the website b-Bravo o-Oscar i-India dot ie you will go to the official Bank of Ireland website, where you can access personal banking and business banking etc.
If you were to be given a link to b-Bravo o-Oscar l-Lima dot ie, that kinda looks like the correct link. It could take you to a clone website that looked like the Bank of Ireland website at that address. You could be fooled into providing lots and lots of personal information and access information to your account.
So that’s how they can potentially compromise you.
Similarly you might have a situation where you are used to logging into the administration console for your Microsoft or Google accounts. Which would usually be accessed by going to admin.google.com or admin.microsoft.com.
But if you were given a link that says admingoogle.com or adminmicrosoft.com and then you were presented with a login page to access your account. That way, if you did that, these guys could potentially get your credentials for the admin portal and they could wreak a lot of havoc with that.
In that situation something like a password manager would be very helpful, it would prevent you entering your passwords into that portal.
So that’s it for this week. Lets be careful out there and we’ll talk to you again next week.
How can L2 Cyber Security help you?
We offer a full range of training programmes, which can be delivered online or in-person*.
L2 Cyber Security are also a partner of CyberRiskAware for online self-directed Cyber Security Awareness training and Phishing testing.
Contact us for more information at info@L2CyberSecurity.com.
*With appropriate social distancing and other health and safety measures adhered to.