Typosquatting
Registering a domain that closely resembles a popular brand (gogle.com, paypa1.com) to capture mistyped traffic for phishing or ads.
Typosquatting is the practice of registering domains that exploit common typing mistakes, like `gogle.com`, `amazno.com`, or `paypa1.com` (with a digit 1 in place of an 'l'). The squatter monetises the captured traffic with ads, parking pages, or outright phishing pages that mimic the real brand. The same technique applied to nameservers (typosquatted NS hostnames) is a known attack vector that dnschkr has researched at scale. Defences for brand owners include defensive registrations of likely typos, trademark enforcement via UDRP, and monitoring newly registered domains for lookalike patterns.
Related terms
See also
Referenced on
- 145,061 Domains Delegated to a Misspelled Name Server — Here's How the Attack Works
- DNS Security Dashboard
- DNS Zone Walking at the TLD Level: How Attackers Discover Every Domain in a TLD
- Domain Availability
- How to Report Phishing Emails and Websites Hosted on an IP Address
- Reverse IP Domain Check
- Reverse Nameserver Lookup