close
We use cookies to give you the best user experience. I agree Find out more

Homoglyph Attack Replaces Letters in URLs

The homoglyph attacks are imminent, warns Cypriot security watchdog CSIRT, in a major way!

The Story

There is a fake PayPal site lurking on the internet deceiving users into thinking that it’s the real thing.

It is known to spread Nemty ransomware. A homoglyph attack is based on characters that are replaced in a URL address but on the face, looks similar and therefore, trustworthy.

These attacks are extremely dangerous because they do not provide enough room for users to develop a counter move.

Targets include banks, financial institutions, e-payment platforms, and other email and notable media forums. Thus, it is advisable to check for letters in the URL.

This process serves as a security layer for detecting attempts at deceiving users. The recent wave of attacks has targeted PayPal users. When you watch the URL closely, you notice that letters in the address have been replaced by look-alike letters of Russian origin.

Not easy to spot, right?

That’s the idea. This swap can only be spotted by cybersecurity experts and thanks to them, in doing so the threat of homoglyph attacks has been brought to light.

For instance, the letter ‘a’ is replaced with ‘ạ’ from Latin bears all the signs of a malicious website.

Should I be Concerned?

Of course. Anyone who values his or her online privacy and security ought to be concerned with it. Other cases have been reported where apple.com has faced a homoglyph attack, referred to as a ‘homoglyphed’ domain. Although, the majority of domains affected by this were financial institutions.

In order to safeguard your interests online and remain impervious to these attacks, employ a decent VPN service such as Ivacy. With its military-grade encryption, Ivacy reigns supreme in the department of impenetrable security.

Ivacy masks your IP address and assigns you a different IP by way of which you can stay anonymous. This considerably reduces odds of you becoming a victim to cybercrime or phishing, for that matter.

Get Ivacy Now
Shares