Security news aggregator

Latest coverage for Typosquatting

Typosquatting uses lookalike domains to redirect users, steal credentials, or deliver malware; domain monitoring and user verification reduce the risk.

4 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Typosquatting is the registration or use of a domain that resembles a legitimate one, often through misspellings, omitted or added characters, alternate top-level domains, or visually similar characters. An attacker may use the lookalike site for phishing, malware delivery, advertising, or impersonation. The technique works when users follow a mistyped address, a misleading search result, or a link that hides the actual domain.

The main risks are credential and payment-data theft, malware infection, and convincing impersonation of an organization or service. Security teams can reduce exposure by monitoring domain registrations, DNS changes, and certificate records for lookalikes; blocking confirmed malicious domains through web or DNS filtering; and maintaining clear, verified domains for customer communications. Password managers and user training to check the registered domain can also reduce successful visits. Suspected domains should be assessed quickly and, where appropriate, reported to the registrar or hosting provider.

Volume over time

Weekly headline count for the current query.

Showing 4 most recent headlines Filtered view