Skip to main content
  1. Home
  2. Computing
  3. News

Don’t mistype that URL, as it could lead to malware

By

researchers use ambient light sensor data to steal browser exhausted man computer problems desk hacking hackers malware frust
Shutterstock
Typo prone? You may want to clean up your act. In a malicious trend known as typosquatting, hackers are now taking advantage of our fast fingers and careless errors, attempting to send malware onto Macs by way of mistyped URLs. According to the security company Endgame, a whopping 300 popular .com sites have been registered in Oman, whose top level domain is .om. But this is only a cover — the .om sites try to load OS X malware known as Genieo onto the Apple devices of unsuspecting users.

Endgame first came across typosquatting when an employee made a typo in “www.netflix.com,” instead typing, “netflix.om.” As Endgame notes, “He did not get a DNS resolution error, which would have indicated the domain he typed doesn’t exist.  Instead, due to the registration of “netflix.om” by a malicious actor, the domain resolved successfully.” Luckily, being an Endgamer, he was able to spot the malware, and “retreated swiftly, avoiding harm.”

Recommended Videos

Other less savvy users, however, may not have been as lucky. The malware Genieo, Endgame notes, is a rather “common OS X malware/adware variant” that “typically infiltrates the user’s system by posing as an Adobe Flash update.” If the user accepts the update, then Genieo “entrenches itself on the host by installing itself as an extension on various supported browsers (Chrome, Firefox, Safari).”

Please enable Javascript to view this content

Typosquatting isn’t all that new — indeed, malware has previously been delivered by way of mistyped addresses. But Endgame does say that it hasn’t previously come across “.om abuse.” So how concerned should we be? The security firm suggests, “Our research also indicates that .om domains associated with the vast majority of major brands may be unregistered. It does not appear that are widely including the .om in their typosquatting mitigation strategies. We strongly recommend doing so.”

Related

So be careful when you’re typing, friends. This is one type of “om” you want nothing to do with.

Editors’ Recommendations

Topics
Lulu Chang
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
Future Apple Watches could tell you if you’re at risk for diabetes
Someone wearing an original Apple Watch Ultra showing the weather app.

An apple a day might keep the doctor away, but an Apple device on your wrist could replace them altogether. Well, sort of. The Apple Watch is already chock-full of health-focused applications, but according to a recent report from Mark Gurman, an app for testing blood sugar levels is in development.

Apple has always been good at keeping a lid on its projects, but that approach has reached the next level with this app. Multiple layers of non-disclosure agreements and vetting were required before anyone could participate in the employee-only trial, so details regarding the progress of this app are limited. However, it's another step toward needle-free measurements of your blood sugar levels.

Read more
Apple’s internal tests show Siri isn’t quite ready to beat ChatGPT
Apple Intelligence update on iPhone 15 Pro Max.

With the introduction of the new iPad Mini, Apple made it clear that a software experience brimming with AI is the way forward. And if that meant making the same kind of internal upgrades to a tablet that costs nearly half as much as its flagship phone, the company would still march forward.

However, its ambitions with Apple Intelligence lack competitive vigor, and even by Apple’s own standards, the experience hasn’t managed to wow users. On top of that, the staggered rollout of the most ambitious AI features — many of which are still in the future — has left enthusiasts with a bad impression.

Read more
These M4 MacBook Pro leaks are getting insane, and I don’t know what to believe anymore
An open MacBook Pro on a table.

Apple has yet to announce an October Mac event, but leaks for the M4 MacBook Pro continue to circulate. A new tweet from Apple leaker ShrimpApplePro and a new Russian unboxing video have been spotted by Tom's Hardware, giving this possibly true and definitely unprecedented Apple leak more steam. The tweet claims a seller on a private Facebook group has 200 units of the M4 MacBook Pro for sale, adding: "This is probably the biggest warehouse leakage I've ever seen."

https://x.com/VNchocoTaco/status/1843133165302591861?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1843133165302591861%7Ctwgr%5E3d007d4bc86ddf38301ce5446103d04c8e8215f5%7Ctwcon%5Es1_&ref_url=https%3A%2F%2Fwww.tomshardware.com%2Flaptops%2Fapple-macbook-pro-m4-leakage-gets-serious-with-200-units-reportedly-up-for-sale-on-social-media

Read more