Home News Features & Contents Research Editorial
UK/European Site Product News Enewsletter Webinars Audio/Podcasts Events Recommended Links Contact
Subscriptions Magazine Registration Related Publications Forthcoming Features Advertising Information

In Partnership with:
18 August 2008

Typo squatting targets presidential candidates

Eleanor Dallaway

The US presidential election was a target for typosquatters, said Oliver Friedrichs at the Black Hat conference in Las Vegas.

Typosquatting, also called URL hijacking, is a form of cybersquatting which relies on mistakes such as typographical errors made by internet users when inputting a website address into a web browser. Should a user accidentally enter an incorrect website address, they are led to an alternative website owned by a cybersquatter.

Friedrichs told Black Hat delegates that the US presidential election was a prime opportunity for cybersquatters to make money. “So many websites for the campaign are run in bad faith. Typosquatters can register many domain names for free and dump them after seven days. This way, they can see which domains are getting the most traffic and are thus most profitable”.

Typosquatter websites for presidential candidates who dropped out of the campaign months ago are still accepting donations, proving that these sites really do make money. “Typosquatting has grown to such a scale that real campaigns are actually posting paid adverts for their real campaign on the spoof sites”.  

Whilst some spoof sites are set up to be detrimental and detract from the candidate and their campaign, others are set up “to simply direct you to an opposing candidate’s real page”. JillaryClinton.com for example, may lead you directly to Obama’s genuine campaign website.

In July 2007, Symantec registered 124 domains, which would have been ideal for typosquatting, to protect the main candidates. “No-one contacted us to ask us why we’d bought these URLs. After six months of the domains sitting idle, we set up forward links to the real websites”.

Between January and March 2008, these sites had 21 000 hits.

“Spoof sites were setting their web pages up so that donations were being made directly into the opponent’s campaign pot”, explained Friedrich. So an innocent visit to JillaryClinton.com may have seen an unsuspecting user donating directly to Obama’s campaign despite intending to support Hillary Clinton. 

“Campaigns are not doing enough to protect themselves from this though” argued Friedrich. “In many cases, they’re sending supporters to different domains to donate, trying to keep it simple, but this can cause confusion and uncertainty”. It also makes it easier for typosquatters to operate.

“Election based spam is also a worry” commented Friedrich. “Spammers are not targeting the campaign, just using it to evoke interest” he concluded.

More Black Hat news :

Phishy eco-system

Technology will always fail, says Angell of doom

Hackers and academics need to work together

Satan is on my friends list

 

<< News index

Making Threat Management More Manageable

18th November, 2008 @ 3pm EST

register

Today’s Breaches, the Mandates for Compliance and How to Secure Data-in-Transit
Infosecurity magazine's John Sterlicchi interviews George Adams of SSH Communications Security Inc. about today's breaches, the mandates for compliance, and how to secure data-in-transit.

Available on demand

register




Infosecurity US © Copyright 2008, Elsevier Ltd, All rights reserved. Your use of this service is governed by Terms and Conditions. Please review our Privacy Policy for details on how we protect information that you supply.

 Terms & Conditions | Privacy Policy