Time
1 hour 44 minutes
Difficulty
Beginner
CEU/CPE
2

Video Transcription

00:02
hi and welcome to lessen ones out four of the end user cyber fundamentals course.
00:08
This lesson will be focused on understanding typo squatting
00:15
In this lesson, you will learn what type of squatting is
00:19
the types of typo squatting
00:22
and what other dangers of type of squatting.
00:25
You will also learn how you can protect yourself.
00:31
What is type of swatting,
00:33
typo squatting is when someone registers a domain name similar to a well known domain names such as facebook dot com,
00:41
targeting Internet users who incorrectly type in a Web site address into their browser address bar rather than using the browser search bar.
00:51
When a user miss types a website address such as the misspelling off facebook dot com below, they may end up on the typo Swatters website when they really want to go to facebook dot com.
01:03
Typo squatting is also referred to as you are l hijacking.
01:11
We will briefly review seven different types of typo Squatting
01:17
First kind is tight balls,
01:19
you miss type of Web address off a well known website in the address bar
01:23
such as google dot com with an O. I instead of an O
01:30
two basic misspellings. Many Web addresses can be misspelled. An example would be google dot com, with three owes
01:42
wrong domain extensions
01:45
as more top level domain names are added. So this the likelihood of type of squatting websites
01:52
an example here would be google dot c o
01:57
Examples of top level domains are dot com and dot org's
02:02
alternative spellings.
02:06
Use this maybe let misled by alternative spellings of services,
02:10
brand names and products like Get photos dot com versus get photos dot com with an F instead of a P H
02:29
five
02:30
hyphenated domains.
02:32
This involves omitting or adding ah hyphen in order to illegally direct traffic to a type of domain
02:40
example.
02:43
Instead of facebook dot com,
02:46
the type of squatter website can be face hyphen book dot com.
02:53
Six.
02:54
Supplementing popular brand domains
03:00
If well known brands are supplemented with appropriate words, they may produce a legitimate sounding type of squatted Remaining
03:09
an example of this is apple dish shop dot com versus the rial apple dot com.
03:20
Pretending to be www
03:23
www facebook dot com versus the rial
03:29
w w w dot facebook dot com
03:36
I bet you think these are obvious to spot
03:39
they are. When they pointed out to you.
03:42
But when you're browsing the Internet clicking links and not paying attention, you don't notice.
03:52
We just reviewed various types of type of squatting.
03:55
So why should you care about typo squatting
03:59
Well, title squatting on its own is not dangerous.
04:04
The type of squatter can just be another retailer or individual trying to get some unintended business,
04:12
meaning
04:14
you try to go to an online website to shop, make a typo and unintentional Goto another retail website.
04:20
You may not notice and continue to shop and make a purchase.
04:25
Or maybe you do notice but lengthy offerings and continue to shop and make a purchase.
04:30
Either way, the type of squatter makes out and profits by your mistake
04:34
someone. They also just by thes commonly type domain names
04:41
in the hopes that the rial domain owner will reach out and offer to buy the domains from them and they make a profit.
04:49
But if a type of squatter has malicious intent,
04:54
he may spoonful legitimate website, which is used to fish for sensitive information off download malware.
05:00
We will talk more about spoofed websites and the dangers in the next lesson.
05:11
So how do you protect yourself from typo squatting.
05:14
Always type the name
05:15
off the website in the search bar instead of directly into the browser address bar.
05:20
This way, if you make a typo
05:24
or misspelling, you do not end up on the typo. Squatters website.
05:31
Do not click lengths and e mails as thes, maybe phishing emails designed to look like they are from a legitimate company.
05:39
When you click the link, you may end up on the type of squatters spoofed website.
05:45
Always go directly to the website and never click the link in the email.
05:50
Pay close attention to you or else
05:54
type of squatters purposely ensure the u. R L looks like the legitimate look. You are l.
06:01
If you own a business or in security at your job and manage domains,
06:09
you can register common domain typos of your website
06:13
and half the customer redirected to your legitimate site that the customer intended to go.
06:25
What is typo squatting?
06:34
Typo Squatting is when someone registers a domain name similar to a well known domain name, targeting users who incorrectly typed in a website address into their browser address bar
06:48
rather than using the browser search bar.
06:57
In today's video we discussed. What type of squatting is
07:00
seven different types of typo squatting,
07:05
the dangers of type of squatting
07:08
and how you can protect yourself.
07:14
Here are my references and I will see you in the next lesson.

Up Next

End User Cyber Fundamentals

This End User Cyber Fundamentals course covers Internet risks such as typosquatting, website spoofing, drive-by downloads, Malvertising, and how to protect yourself using security best practices.

Instructed By

Instructor Profile Image
Lisa Martino
Director, Information Security Governance, Risk & Compliance
Instructor