A New Vector
Homograph attacks are the latest in a long line of new attack vectors now being used by cybercriminals to trick users into disclosing personal information such as passwords or other sensitive data.
What is a Homograph?
A Homograph is an attack that uses homoglyphs, characters that use other character sets such as Greek and Cyrillic that have letters that look the same as the roman equivalents. As such, cybercriminals can register domain names that look on the surface to be identical to existing domains and can be used to capture user passwords or other sensitive information. A good example would be an attacker registering the domain “google.com” but using the unicode character u+043E or cyrillic small letter O. There are many characters this can be applied to in order to create a significant number of identical domains.
This technique is usually combined with phishing attacks to trick the user into clicking on the domain and redirecting them to an untrusted domain to deploy malware or collect other information.
How can BlackFog help?
BlackFog Privacy provides automatic protection from homographs and homoglyphs by monitoring network packets in real time. When it detects domains containing multiple character sets it automatically prevents access to that domain.
Share This Story, Choose Your Platform!
Related Posts
The Salesforce Breach Wave Of 2025: Google, Workday, And Salesloft
Analysis of the 2025 Salesforce breach wave at Google, Workday, and Salesloft, highlighting SaaS risk, identity abuse, and data exfiltration.
AI Endpoint Security: Smarter Protection for Smarter Threats
Find out why businesses should be considering AI endpoint security solutions and what benefits can these offer over legacy EDR tools.
Why Enterprise Endpoint Security Needs To Be Smarter, Faster And Scalable
Discover why large organizations need scalable, adaptive enterprise endpoint security solutions that protect diverse devices and environments.
EDR vs XDR: What’s The Difference, And Where Does ADX Fit In?
Understanding the difference between EDR vs XDR is essential when determining which endpoint security solutions are best for your business.
5 Steps To Effective Endpoint Management
Endpoint management plays a vital role in protecting businesses from inbound threats and data loss. Learn best practices to secure devices.
How Intrusion Prevention Systems Are Evolving with AI And Machine Learning
What should firms look for when considering a modern, AI-assisted intrusion prevention systems?