Skip to content
A New Vector
Homograph attacks are the latest in a long line of new attack vectors now being used by cybercriminals to trick users into disclosing personal information such as passwords or other sensitive data.
What is a Homograph?
A Homograph is an attack that uses homoglyphs, characters that use other character sets such as Greek and Cyrillic that have letters that look the same as the roman equivalents. As such, cybercriminals can register domain names that look on the surface to be identical to existing domains and can be used to capture user passwords or other sensitive information. A good example would be an attacker registering the domain “google.com” but using the unicode character u+043E or cyrillic small letter O. There are many characters this can be applied to in order to create a significant number of identical domains.
This technique is usually combined with phishing attacks to trick the user into clicking on the domain and redirecting them to an untrusted domain to deploy malware or collect other information.
How can BlackFog help?
BlackFog Privacy provides automatic protection from homographs and homoglyphs by monitoring network packets in real time. When it detects domains containing multiple character sets it automatically prevents access to that domain.
Share This Story, Choose Your Platform!
Related Posts
What Enterprises Need To Know About Artificial Intelligence Privacy Concerns
The use of generative AI in the workplace gives rise to a range of Artificial Intelligence privacy concerns. What do cybersecurity leaders need to know when adopting these tools?
Answering Key GenAI Security Questions: Are ChatGPT Conversations Private?
Do you know how private your ChatGPT conversations really are? Here's what cybersecurity pros and IT admins should know about the tool.
Does ChatGPT Store Your Data? What Every Business Needs To Know
Understanding how tools like ChatGPT store your data is critical for the secure use of GenAI - here's what to know.
Why Enterprise ChatGPT Isn’t A Silver Bullet For AI Security
What cybersecurity considerations should businesses take into account if they plan to adopt Enterprise ChatGPT as a generative AI tool?
Could An OpenAI Data Breach Expose Your Firm’s Secrets?
Have you considered what damage an OpenAI data breach could potentially do to your business?
Understanding Generative AI Risks For Businesses
What generative AI risks will businesses need to be mindful of in the coming year to prevent issues such as data leakage, inaccurate results or compliance challenges?