[dns-operations] Phishing with Unicode Domains

Richard Clayton richard at highwayman.com
Thu Apr 20 10:45:03 UTC 2017


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

In message <000101d2b979$abe700b0$03b50210$@cn>, =?utf-8?B?RGF2ZXkgU29uZ
yjlrovmnpflgaUp?= <ljsong at biigroup.cn> writes

>    A report about a kind of Phishing with unicode domains
>
>    Try copy this to your chrome or firefox: https://www.?????.com , or 
>    this xn--80ak6aa92e.com 

Besides the browser protections mentioned in the blog article you might
have some difficulty getting the types of domains that mix character
sets into an email and delivered to large providers:

<https://www.m3aawg.org/sites/default/files/m3aawg-unicode-best-
practices-2016-02.pdf>

... but like browsers, where there's a single exotic character set then
it's essentially the same problem for apple as someone who registers
apple.tld (and the issue does not scale all that far)

- -- 
richard                                                  Richard Clayton

Those who would give up essential Liberty, to purchase a        Benjamin
little temporary Safety, deserve neither Liberty nor Safety.    Franklin

-----BEGIN PGP SIGNATURE-----
Version: PGPsdk version 1.7.1

iQA/AwUBWPiRLzu8z1Kouez7EQIMPQCfVZzyDbyc0WrkqfbzbyZUNZyRcUgAoPgO
Htf+M/AK0KSsxyU8C8dyDBrU
=mF+L
-----END PGP SIGNATURE-----



More information about the dns-operations mailing list