Sign in / up

back to article Cybercrooks spell trouble with typosquatting domains amid CrowdStrike crisis

Thousands of typosquatting domains are now registered to exploit the desperation of IT admins still struggling to recover from last week's CrowdStrike outage, researchers say. According to security shop SentinelOne, the number is growing by the day, however, current attempts are still relatively unsophisticated and largely …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. steviebuk Silver badge

    I know

    "Looking at examples of these campaigns, it's difficult to see what admin in their right mind would fall for this kind of crud"

    The ones where IT department has been "Let go" and replaced with Indian call centers, as mentioned on Reddit. When the finance lady had to take her monitor and keyboard to the server room to try and fix what the call centre was asking her to do over the phone. See left crying.

    That's who'll get caught out. C level managers who think they don't need an IT team.

    10 0 Reply
  2. Anonymous Coward
    Anonymous Coward

    Buck stops with registrars

    It might be a small reseller of domain names, who allowed definitely-crowdstrike-honestly.com to be registered but they report to a larger organisation. IANA, or someone like that surely has the technical ability and power to stop this. Maybe a three strikes and out policy would focus the minds of the small domain name sellers. If the $20 sale might cost them their ability to sell .com then they might run the proposed name through a banned list first. Maybe even a use for machine learning, if you want to inject some fashionable buzzwords.

    0 0 Reply
    1. hoola Silver badge
      Reply Icon

      Re: Buck stops with registrars

      Maybe the solution is to charge more and actually have real people vet them.

      So much is just a simple name check ( domain is not registered) with then a helpful list of alternatives that you can buy as well it is no surprise that typo domains proliferate.

      How about doing some checking instead of relying on the real domain owners having to go through a lengthy appeal.

      Yes the scrotes that do this are to blame but if is not entirely theirs.

      At some point responsibility has to start to come into play, something that is increasingly getting worse in the tech sector as companies hide behind T&Cs or ever more bizarre insurance.

      Just look at CrowdStrike, if you read the T&Cs they are not liable for any collateral loss. That is insurer's of the people affected, ultimately all of us.

      Now if there was more responsibility maybe some of the fuckwittery we see would stop.

      2 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like