lfnetwork.com mark read register faq members calendar

Thread: Domain Name Scamming!
Thread Tools Display Modes
Post a new thread. Add a reply to this thread. Indicate all threads in this forum as read. Subscribe to this forum. RSS feed: this forum RSS feed: all forums
Old 02-09-2005, 04:40 AM   #1
Jan Gaarni
Grand Moff
 
Jan Gaarni's Avatar
 
Join Date: Jan 2002
Posts: 5,806
LFN Staff Member Forum Veteran 
Exclamation Domain Name Scamming!

Earlier this week a notice was made, warning people about scammers and such.

You may think, well, what else is new. The net is filled with scammers.

Well, since after you were able to use national letters (in example norwegian , , and ) in the addressfield, the threat has increased significantly.

Everyone knows of the famous replacing the O with a 0 (zero), like MICR0S0FT.com, and abusing that to trick people.
It’s usually easy to spot it if you are awake and pay attention when clicking links.

But what happens when you no longer are able to recognise wether it is an a or an a?

Confusing?
Example: the Russian letters a, e, o, and y looks fairly similar to the latin a, e, o, and y. For us mortal people, this is pretty much impossible to spot. But in the computerworld (binary kode) the difference is obvious and both letters are treated as 2 different letters. Someone could make a fake PayPal site under the .com domain (and probably already have, so stay alert) and use the Russian a instead the propper a. They can then lure you into this website and, if you are particulary “unlucky”, scam you for your money.

Mozilla 1.7.5, Firefox 1.0, Konqueror 3.2.2 and Opera 7.54 have this problem, according to Secunia. Micrososft IE does not have this exact same problem, but are subject to other problems which has similar effect.

If you want to test if you are vunerable to this spoof, click here.
It should take you to a fake PayPal site created by Secunia if you are affected.


The easiest way to avoid this problem is to type in the address manually in the addressfield, rather than copy and paste, or clicking on a link from a mail informing you they have registered some inregularities on your account at for instance PayPal (I’ve received a couple of these already).

The other way is to disable the IDN feature on your browser.
How you do that you will have to go to your browsers own webpages to see if they have any solutions there.
For Firefox users (such as myself ), you can go here.
It’s only a temp solution as far as I understand.

I don’t really see how they can fix this though, unless national letters are banned again.


More links for info on this:
Secunia
The Register
The Schmoo Group
The Homograph Attack
IDN Permissible Code Point Problems




Empire At War Moderator
&
SWGalaxies Moderator

- What we do in life, echoes in eternity!
- May the pants be with you!

A smile is the shortest distance between people - Victor Borge!


Custom Avatar by Wraith 8
Jan Gaarni is offline   you may: quote & reply,
Old 02-09-2005, 05:36 PM   #2
lukeiamyourdad
Using Teletraan I
 
lukeiamyourdad's Avatar
 
Join Date: Aug 2002
Location: Montral, Qubec, Canada
Posts: 8,274
LFN Staff Member 
Thanks for the info Jan. I'll be more careful thanks to you


http://www.marioramos.ca/ -A friend of mine and an aspiring filmmaker.
lukeiamyourdad is offline   you may: quote & reply,
Old 02-18-2005, 04:01 PM   #3
El Sitherino
The Original.
 
El Sitherino's Avatar
 
Join Date: Sep 2002
Location: Planet Funkālnite.
Posts: 14,509
Hot Topic Starter LFN Staff Member Forum Veteran LF Jester 
to solve this, get the adblock extension. go to it's preferences, hit adblock options. Select site blocking and place this in as a new filter.
" :-/[^\x20-\xFF]/ "


This body is not me. I am not caught in this body.
I am life without limit.
El Sitherino is offline   you may: quote & reply,
Post a new thread. Add a reply to this thread. Indicate all threads in this forum as read. Subscribe to this forum. RSS feed: this forum RSS feed: all forums
Go Back   LucasForums > Network > Empire At War > Community > Dexter Jettser's Diner > Domain Name Scamming!

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -4. The time now is 08:43 AM.

LFNetwork, LLC ©2002-2011 - All rights reserved.
Powered by vBulletin®
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.