A New Vector
Homograph attacks are the latest in a long line of new attack vectors now being used by cybercriminals to trick users into disclosing personal information such as passwords or other sensitive data.
What is a Homograph?
A Homograph is an attack that uses homoglyphs, characters that use other character sets such as Greek and Cyrillic that have letters that look the same as the roman equivalents. As such, cybercriminals can register domain names that look on the surface to be identical to existing domains and can be used to capture user passwords or other sensitive information. A good example would be an attacker registering the domain "google.com" but using the unicode character u+043E or cyrillic small letter O. There are many characters this can be applied to in order to create a significant number of identical domains.
This technique is usually combined with phishing attacks to trick the user into clicking on the domain and redirecting them to an untrusted domain to deploy malware or collect other information.
How can BlackFog help?
BlackFog Privacy provides automatic protection from homographs and homoglyphs by monitoring network packets in real time. When it detects domains containing multiple character sets it automatically prevents access to that domain.
Share This Story, Choose Your Platform!
Related Posts
Ransomware Prevention at Scale: American Lazer / CommSat’s Success with BlackFog
American Lazer / CommSat protects clients from ransomware with BlackFog, achieving a perfect record of zero breaches on managed systems.
Stopping Blue Locker Ransomware: BlackFog’s Prevention-First Defense
Blue Locker Ransomware targets government, energy, and critical infrastructure. Learn tactics, impacts, and BlackFog’s defenses.
Why Cyber Enabled Fraud Was the Silent Giant of Online Crime in 2024
Cyber enabled fraud dominated online crime in 2024, outpacing ransomware and hacking with huge monetary losses.
The State of Ransomware 2025
BlackFog's state of ransomware report 2025 measures publicly disclosed and non-disclosed attacks globally.
Confronting Warlock Ransomware: BlackFog’s Prevention First Strategy in Action
Warlock ransomware exploits SharePoint flaws for mass attacks. BlackFog stops exfiltration, web shells, and GPO-based payloads in real-time.
Taking Down Interlock Ransomware: BlackFog’s Prevention First Approach
Interlock ransomware targets healthcare, education, and manufacturing with ClickFix and RATs. BlackFog stops data theft before it starts.