A modified letter, an identically copied site, and the trap closes. This sophisticated phishing technique deceives thousands of Internet users every year, even the most cautious.
We all click on links every day, often from an email or a search result. The logo seems familiar, the service mentioned is part of our daily lives, so the whole thing seems credible and nothing gives the impression of immediate danger. It is precisely this routine that cybercriminals are exploiting today and many are being fooled.
Indeed, the scenario is well established and is based on a simple principle: reproduce the appearance of an official site in order to create a sufficient climate of trust to encourage the victim to act. The copied pages use the colors, the structure, sometimes even the legal notices or the original forms. The targets are generally widely used services, linked to reservations, customer accounts or even professional tools. For example, companies like Marriott International or Microsoft have already seen their image exploited.
The process? Once on these fake pages, Internet users are invited to enter usernames, passwords or bank details, convinced that they are on the right site. The data obviously does not go to the expected service, but directly to the scammers, with the aim of emptying their bank account, hijacking their profile or launching other chain attacks.
Very concretely, attackers register web addresses that replace the letter “m” with the combination “rn” (r + n), thus creating fake sites that look almost exactly like the real ones. “This technique, known as typosquatting or homoglyph attack, exploits the way modern fonts display text”explains Cyber Security News. Behind this page hides a tiny manipulation, sufficient to transform a legitimate site into a gateway to a scam.
Faced with these threats, specialists point out that vigilance should not be limited to the content of a message or the general appearance of a page. It is recommended to display the full address of the site visited and take the time to read it carefully, instead of relying on an overall impression. The ideal is to enter the address of a service yourself in the browser bar, rather than going through a link received in a message.
