A simple and widely applied form of trickery for phishing attempts is to use domain names that look very similar to the original. Here are a few of many examples:
Real domain name | Fake domain name |
---|---|
Companies such as PayPal and eBay try and protect themselves by
registering a range of domain names similar to their primary domain. But
a creative scammer will always be able to come up with some new twist on
the name that has not yet been registered. Netcraftâs web-based DNS
search tools (http://searchdns.netcraft.com) can
show the scale of the problem. Select the site
contains
option, enter a name such as paypal
, and see how many web servers are
reported that match. Some of these are legitimate but a lot of them look
very dubious.
Get Internet Forensics now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.