phishing Unicode URL phishing scam

Submitted by gerry on Tue, 10/10/2017 - 15:30

I occasionally use Bittrex to trade cryptos and were it not for my password manager, I would probably have fallen victim to a pretty subtle phishing scam.. The scam relies on the fact that in the huge unicode character set, there are many glyphs that look very like standard the roman characters we are used to as far as URLs are concerned. Many browsers do not make any visual distinction either, so if a letter looks like an 'A' for example, only some digging will reveal that it is in fact another character entirely.

Compare this, the legitimate URL...

Worst. Spam. Ever.

Submitted by gerry on Tue, 08/20/2013 - 11:51

I just got one of those 'we can SEO you to riches and fame' emails. Normally, I just ignore them, flag as spam so gmail recognises them in the future, and go about my day. This time, however, the brazen tone and apparently international presence of IMPACTFULSEO.COM caught my attention.