Typosquatting
A form of cybersquatting where attackers register domain names that are intentionally misspelled variations of popular or corporate brands.
Overview
Typosquatting relies on human error—users mistyping a URL or failing to notice a subtle change in an email sender's address. Attackers register domains like 'rnicrosoft.com' instead of 'microsoft.com' or 'paypa1.com'. These domains are frequently used to host credential harvesting sites or to send highly convincing BEC emails. PhiShark's AI validation engine is immune to human oversight; its lexical analysis and computer vision components instantly flag look-alike domains, verifying the true identity of the sender or the destination website before any damage occurs.
Real-World Examples
- ▸Registering 'goggle.com' to intercept traffic
- ▸Using a .co domain instead of a .com for invoice fraud
- ▸Homograph attacks using visually identical Cyrillic characters
Related Terms
Protect Against Typosquatting
PhiShark's agentic AI detects and analyzes threats in real-time
Start Free Trial