WEBINAR: Join WatchGuard CTO and our Threat Research Team on Aug. 2nd to hear the findings from our Q1 Internet Security Report! Learn more about the top threats detected in the first quarter and how you can defend your business against them!
Targeted email attacks
Hi Experts,
I have an issue were my domain is subject to a targeted email attack where they are using a similar domain name to impersonate them for example we are domain.com.au and they use domian.com for example. I have contacted the domain registra and they have canceled the account for domian.com but the domain will be available for purchase.
How do i stop this from happening.
I have an issue were my domain is subject to a targeted email attack where they are using a similar domain name to impersonate them for example we are domain.com.au and they use domian.com for example. I have contacted the domain registra and they have canceled the account for domian.com but the domain will be available for purchase.
How do i stop this from happening.
Who is Participating?
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get every solution instantly with premium.
Start your 7-day free trial.
I wear a lot of hats...
"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.
LVL 104
Unless you wish to buy up all of domain.xy,tf or whatever, you cannot. People can purchase whatever domain they wish that is not owned. You have to purchase what you do not want sold to others.
A "targeted e-mail attack" would usually mean, someone of your company is being sent malware specifically appealing to him, like some attachment that has indeed a title that is of interest for his business.
What type of attack are you seeing? What has that to do with the domain name similarity?
What type of attack are you seeing? What has that to do with the domain name similarity?
Hi McKnife,
What we are seeing is someone is using a domain name similar to ours but miss spelled in an attempt to trick our customers in changing the bank details on record for us. So when they go to pay an invoice they pay it to the wrong bank account, the hackers. Using this similar domain name and posing as legitimate staff members.
What we are seeing is someone is using a domain name similar to ours but miss spelled in an attempt to trick our customers in changing the bank details on record for us. So when they go to pay an invoice they pay it to the wrong bank account, the hackers. Using this similar domain name and posing as legitimate staff members.
Ah, right.
You could only tell the authorities about it or, like you already did, the domain registra.
All customers should be aware that e-mail addresses can be faked. So they even could use your name with the correct spelling. If your clients wish to have secured and authenticated communication, use certificates and encrypted mails, no way around it.
You could only tell the authorities about it or, like you already did, the domain registra.
All customers should be aware that e-mail addresses can be faked. So they even could use your name with the correct spelling. If your clients wish to have secured and authenticated communication, use certificates and encrypted mails, no way around it.
It's called typosquatting, and it's a common issue; you can't claim ownership of every possible typo or similar looking domain to your own (some are even going to be legitimate domains owned by others) so all you can do is be vigilant for fraud attempts and refer them to isps and/or police as appropriate.
Experts Exchange Solution brought to you by
Your issues matter to us.
Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.
Start your 7-day free trial
I managed to get the fraudulent domains block, the domain registrar was asking for a court order to release the info they have on file so waiting on that. I've also reported it to the Australian cyber crimes commission or something like that.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Security
From novice to tech pro — start learning today.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get every solution instantly with premium.
Start your 7-day free trial.