Bittrex.com Unicode URL phishing scam

Submitted by gerry on Tue, 10/10/2017 - 15:30

I occasionally use Bittrex to trade cryptos and were it not for my password manager, I would probably have fallen victim to a pretty subtle phishing scam.. The scam relies on the fact that in the huge unicode character set, there are many glyphs that look very like standard the roman characters we are used to as far as URLs are concerned. Many browsers do not make any visual distinction either, so if a letter looks like an 'A' for example, only some digging will reveal that it is in fact another character entirely.

Compare this, the legitimate URL...