- Doppelganger Domain
-
A Doppelganger Domain is a domain spelled identical to a legitimate fully qualified domain name (FQDN) but missing the dot between host/subdomain and domain, to be used for malicious purposes.
Contents
Overview
Typosquatting's traditional attack vector is through the web to distribute malware or harvest credentials. Other vectors such as email and remote access services such as SSH, RDP, and VPN also can be leveraged. In a whitepaper by Godai Group on Doppelganger Domains, they demonstrated that numerous emails can be harvested without anyone noticing.[1]
See also
References
- ^ "Doppelganger Domain whitepaper". Godai Group. 6 Sep 2011. http://godaigroup.net/publications/doppelganger-domains/.
External links
- "Researchers’ Typosquatting Stole 20 GB of E-Mail From Fortune 500". Wired. 8 Sep 2011. http://www.wired.com/threatlevel/2011/09/doppelganger-domains/.
- "Bad spelling opens up security loophole". BBC. 12 Sep 2011. http://www.bbc.co.uk/news/technology-14842691.
General Reverse domain hijacking · Cybersquatting · Domain name drop list · Domain name speculation · Domain sniping · Domain parking · Domain tasting · Domain name warehousing · Doppelganger Domain · Type-in traffic · Typosquatting · Bitsquatting · Domain name front runningLegal Anticybersquatting Consumer Protection Act (Trademark Cyberpiracy Prevention Act) · PROTECT Act of 2003 (incorporates the Truth In Domain Names Act of 2003)Technical Categories:- Domain name system
- Internet advertising and promotion
- URL
- Network addressing
- Computer law
- Trademark law
- Nonstandard spelling
Wikimedia Foundation. 2010.