Homograph attacks are the latest in a long line of new attack vectors now being used by cybercriminals to trick users into disclosing personal information such as passwords or other sensitive data.
What is a Homograph?
A Homograph is an attack that uses homoglyphs, characters that use other character sets such as Greek and Cyrillic that have letters that look the same as the roman equivalents. As such, cybercriminals can register domain names that look on the surface to be identical to existing domains and can be used to capture user passwords or other sensitive information. A good example would be an attacker registering the domain “google.com” but using the unicode character u+043E or cyrillic small letter O. There are many characters this can be applied to in order to create a significant number of identical domains.
This technique is usually combined with phishing attacks to trick the user into clicking on the domain and redirecting them to an untrusted domain to deploy malware or collect other information.
How can BlackFog help?
BlackFog Privacy provides automatic protection from homographs and homoglyphs by monitoring network packets in real time. When it detects domains containing multiple character sets it automatically prevents access to that domain.
Related Posts
Lake Dallas ISD Chooses BlackFog to Prevent Data Exfiltration
Lake Dallas ISD serves about 4,000 students in Denton County uses BlackFog's anti data exfiltration to protect the school district and ensure data doesn’t end up in the hands of cybercriminals.
Wizard Spider: Taking A Look At The Notorious Russian Cybercrime Group
Wizard Spider is a notorious Russian cybercrime group which is part of a larger cyber-cartel known as the Ransom Cartel or Maze Cartel.
Ransomware Focus: LockBit Attacks in 2024
Latest information on all LockBit attacks both disclosed and undisclosed in 2024
Ongoing: New Ransomware Gangs in 2024
Ransomware gangs continue to break records and BlackFog will track all new ransomware gangs in 2024.
Data Security Services: What do Firms Need to Know?
Why should firms be considering data security services as part of their cyber protection strategy?
BlackFog Sweeps the 20th Annual 2024 Globee Awards for Cybersecurity
BlackFog Named Triple-Winner in the 20th Annual 2024 Globee Awards for Cybersecurity