Detailedlikelihood: Lowseverity: MediumDraft

CAPEC-632Homograph Attack via Homoglyphs

Abstraction
Detailed
Status
Draft
Likelihood
Low
Severity
Medium

Description

An adversary registers a domain name containing a homoglyph, leading the registered domain to appear the same as a trusted domain. A homograph attack leverages the fact that different characters among various character sets look the same to the user. Homograph attacks must generally be combined with other attacks, such as phishing attacks, in order to direct Internet traffic to the adversary-controlled destinations.

Related weaknesses· 1

CWE-1007

Related attack patterns· 3

CAPEC-616 (ChildOf)CAPEC-89 (CanPrecede)CAPEC-543 (CanPrecede)

Exploits1

TypeTargetConfidenceTier
WeaknessInsufficient Visual Distinction of Homoglyphs Presented to Usercwe-1007100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
TypoSquatting
CAPEC
SoundSquatting
Defence
Homoglyph Denylisting
CAPEC
Counterfeit Websites
CAPEC
Content Spoofing
CAPEC
Using Alternative IP Address Encodings
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.