Does your company have an evil domain twin on the web? My name is Matthew Kaing and I am eSudo Technology Solutions. Let’s talk about the danger of look-alike domain name.
One the trick Cybercriminal or bad actors are using is a look-alike version of your company’s name to deliver malware through phishing email or send that plays off your brand.
Every day, cybercriminal or attackers are busy registering lookalike, or doppelganger, domains that mimic reputable brands to lure users through phishing emails, malware delivery and more. The domains are designed to trick users into believing they’re engaging with a bona fide enterprise. The associated costs are minor for threat actors. Not so your business, which can face astronomical losses, beyond the purely financial, to include critical brand compromise and data theft.
For example, if your business domain name is eSudo[.]com, a Doppleganger Domain of eSudo.com – might be eZudo[.]com.
Since look-alike domains are a dangerous vector for phishing attacks, it’s top priority that you monitor for potentially harmful domains that can spoof your domain.
- Phishing attacks
- Business Email Compromise
- malware in the form of viruses, keyloggers, worms, trojans, ransomware, botnets, spyware or rootkits.
What can you do?
If a lookalike domain for your business is being used for criminal activity such as phishing, report the domain to services such as Google Safe Browsing or the domain registrar. This may result in the domain’s delisting in search engines, or being pulled offline.
At the end of the day, doppelganger domains – and those who register them – should be taken seriously. They can ruin your reputation, your profitability and your credibility. When you know what’s at stake, you can better protect your brand.
We are a cyber security and IT support firm that helps businesses everyday and all day to manage their risk and stay safe from phishing exploits. Contact us for complimentary consultation.