Fake websites that very closely resemble popular video calling apps like Zoom, Google Meet and Skype are being used to download malware onto a user’s computer. According to an article in The Hacker News in early March, these sites are using relatively simple typosquat domains to trick users into going to the fake websites to infect their computers.
Typosquatting is a technique used by criminals to trick users who think they are going to well-known sites (e.g., zoom.com) but instead go to a fake site that is most likely malicious (e.g., zoorn.com – note that “m” has been replaced with the letters “rn” to resemble an “m”).
The article says that the spoofed sites are predominantly in Russian, which would pose less of a risk to individuals working in the US asset and wealth management industry.
However, it is only a matter of time before these same fraudsters use this trick in English online systems. BW Cyber recommends always double checking the url of the website you are visiting before downloading anything at all. Relatedly, BW Cyber provides an industry leading Typosquat Domain Alerting service to identify false domains. If you are interested in this service for your business, or for any other BW Cyber services, please contact info@bwcyberservices.com.
