Detailedlikelihood: Lowseverity: MediumDraft

CAPEC-630TypoSquatting

Abstraction
Detailed
Status
Draft
Likelihood
Low
Severity
Medium

Description

An adversary registers a domain name with at least one character different than a trusted domain. A TypoSquatting attack takes advantage of instances where a user mistypes a URL (e.g. www.goggle.com) or not does visually verify a URL before clicking on it (e.g. phishing attack). As a result, the user is directed to an adversary-controlled destination. TypoSquatting does not require an attack against the trusted domain or complicated reverse engineering.

Related attack patterns· 3

CAPEC-616 (ChildOf)CAPEC-89 (CanPrecede)CAPEC-543 (CanPrecede)

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
SoundSquatting
CAPEC
Homograph Attack via Homoglyphs
CAPEC
BitSquatting
CAPEC
Scheme Squatting
CAPEC
DNS Cache Poisoning
CAPEC
Counterfeit Websites
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.