Phishing Attacks
Domain Spoofing
Creating fake domains that closely resemble legitimate ones to deceive users in phishing attacks.
Overview
Domain spoofing involves registering domains that look similar to legitimate ones through typosquatting, homograph attacks, or subdomain manipulation. Attackers might use 'rn' instead of 'm', add hyphens, or use different top-level domains. These fake domains host phishing sites or send spoofed emails. Users often don't notice subtle differences, especially on mobile devices. Domain spoofing is particularly dangerous because the attacker controls the entire infrastructure, allowing them to create convincing SSL certificates and professional-looking websites.
Real-World Examples
- ▸paypa1.com instead of paypal.com
- ▸microsоft.com using Cyrillic 'o'
- ▸secure-bankofamerica.com
Protect Against Domain Spoofing
PhiShark's agentic AI detects and analyzes threats in real-time
Start Free Trial