Typosquatting – study reveals the real risks when you mistype a website’s name [VIDEO]

Graham Cluley
Graham Cluley
@[email protected]

TypingAdmit it. You’ve made mistakes when typing in the name of a website.

Your fingers fumble over each other, and before you know it you’re not on google.com but goole.com instead.

It’s an easy mistake to make and – inevitably – there are people waiting to take advantage of it.

Security expert Paul Ducklin has taken an indepth look at the scale and the risk of the typosquatting industry: registering misspellings of popular website domain names in an attempt to profit from typing mistakes.

Sign up to our free newsletter.
Security news, advice, and tips.

Watch the following video to learn more:

[youtube http://www.youtube.com/watch?v=OtfhSWAb1gQ&rel=0&w=500&h=311]

(Enjoy this video? Check out more on the SophosLabs YouTube channel and subscribe if you like.)

Applying every possible one-character typo to the domain names of Facebook, Google, Twitter, Microsoft, Apple and Sophos, Ducklin collected data from 1502 websites and 14,495 URLs.

In a fascinating report, he analyses the data to paint a fascinating picture of the typosquatting ecosystem.

His research’s findings may mean that you’re more careful than ever before when you type in that next web address.

SophosLabs categorisation of typosquat web urls

Read the full report now:

“Typosquatting – what happens when you mistype a website name?”

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.