A common misspelling of the target domain (CSOnline.com rather than CSOOnline.com, for example)
A different top-level domain (using .uk rather than .co.uk)
Combining related words into the domain (CSOOnline-Cybersecurity.com)
Adding periods to the URL (CSO.Online.com)
Using similar looking letters to hide the false domain (ÇSÓOnliné.com)
“Can you see the difference between goggle.com and google.com?” says Russell Haworth, CEO of Nominet, which acts as the registry for the .uk domain. “Essentially, typosquatting is a lookalike domain with one or two wrong or different characters with the aim of trying to trick people onto the wrong webpage.”
Introducing Our First Top Level Defender Olga Jilani
Introducing the Top Level Defender (TLD) Contest
There’s no eloquent, elegant, or groundbreaking way to express how challenging and painful this year has been. Ransomware groups have attacked hospitals and healthcare institutions, unemployment has skyrocketed, the US had a stressful election cycle, and most importantly many have lost loved ones. All the while, defenders have been treading water and trying to outpace the ever-evolving and expanding attack surfaces that come with remote work.
My own “glass half full,” or B positive blood type optimism, has seen and experienced the extraordinary gift of community this year. Sure there have been many tears, moments of distress, even anger. But above all, I’ve witnessed an industry dead set on staying a step ahead of those intent on throwing buckets of nails across the information superhighway. Some might even call this response therapeutic.