ST

Description: We visit dozens of websites everyday, sometimes we are in a hurry to get to the website and try to quickly type in the URL in the browser address bar. At times, we make typographical mistakes such as character omission / replacement / insertion, adjacent character swap, singular / plural mistakes etc. Most of the times this is easy to detect and we get a "website not found" error and we recognize our mistake. But what if there was a website which corresponded to the typo? What if someone setups up an identical website there and you mistakenly type in your credentials? Welcome to the world of Typo-squatting or URL Hijacking as it is called.

In this video we look at a tool called Urlcrazy using which we shall explore a sample case of Typo-squatting using Paypal. It is important to note that sometimes a typo error could actually correspond to a legitimate website, but, it is also important to be aware that it could be used for malicious purposes as well.

Urlcrazy can be used by Website admins to check the possible typos a person could most probably make while trying to get to their website. If there are sites corresonding to the typo, it would be a good idea to check them regularly to make sure that they are not being used for malicious purposes.