Godai Group

Doppelganger Domains

Domain typo-squatting is commonly used to spread malware to users whom accidentally misspell a legitimate domain in their web browser. A new type of domain typo-squatting takes advantage of an omission instead of a misspelling. A Doppelganger Domain is a domain spelled identical to a legitimate fully qualified domain name (FQDN) but missing the dot between host/subdomain and domain, to be used for malicious purposes. Doppelganger Domains have a potent impact via email as attackers could gather information such as trade secrets, user names and passwords, and other employee information.

Each company in the Fortune 500 was profiled for susceptibility to Doppelganger Domains and 151 companies (or 30%) were found to be susceptible. In large corporations, email usage is extremely high and the likelihood of some email being mis-sent is high which could result in data leakage.

 

Download and read the whitepaper for impact details, vulnerability prevalence, and mitigation strategies. We are also offering a free scan to identify if your domain is vulnerable to the doppelganger domain attack.

 

 

 

 

 

 

 

 

Download Whitepaper

Doppelganger Domains (pdf)

Free Domain Scan

    Curious if your domain(s) are vulnerable to doppelganger domains? Fill out the form below for a free scan.

    Your Name

    Your Email

    Domain(s) to scan

    I certify that I have authority/ownership over the domain(s), and grant you authority to scan the domain(s) submitted.

    © 2024 Godai Group.
    Twitter RSS