Skip to Main Content

Homograph Attack

Observe the website WWW with a magnifying glass

What is a Homograph Attack?

A homograph is a word that is spelled the same as another word but has a different meaning. A IDN (Internalized Domain Name) homograph attack is the cyber deception where attackers use fake URLs with confusable text that look similar to legitmate ones. Their goal is to mislead readers into thinking they are a trusted website, thereby gaining access to sensitive information or installing malicious software on their devices.  

 

 

How Do Homograph Attacks Work?

Cybercriminals often use homograph attacks to create fake websites that mimic legitimate ones. They do this by substituting characters in a domain name with visually similarities between characters from different writing systems. Many of these fake websites can be designed to steal personal information, such as passwords and credit card numbers.

 

PLease look at the examples below. Can you tell the true from the false at a glance? 

An example shows a fake homograph email address and a legitimate email address. The fake email address is support at rnicrosoft dot co dot uk that uses an r and n combination to mimic the appearance of the letter m in the legitimate email address support at microsoft dot co dot uk

Fake  Email address

 

Legitimate  Email address

In this example, the link above is a fake homograph email address. The fake email address support @ rnicrosoft . co . uk uses an "r" and "n" combination (rn) to mimic the appearance of the letter "m" in the legitimate email address support@microsoft . co . uk.

 

Several examples.

  • Replace lowercase I (L) with uppercase i. Sample IDN: AppIe.com
  • Replace O with number 0. Sample IDN: micr0soft.com

 

 

How to Protect Yourself from Homograph Attacks

  • Double-check URLs: Look for any unusual characters or misspellings before entering any sensitive information.
  • Be Wary of Suspicious Emails: Be alert while clicking on links in unsolicited emails.
  • Use strong password: Create strong and unique passwords for each of your accounts and websites.
  • Enable Multi-Factor Authentication: Adding an extra layer of security can make it much harder for hackers to access your accounts.
  • Always keep software updated: Ensure that your browser and other software are always up-to-date to be protected under latest security patches and features.
  • Use HTTPS websites: Always use websites that start with HTTPS. HTTPS websites with SSL certificates issued by trusted certificate authorities provides a secure and encrypted connection to protect your data. 
The screen is displaying a sample website address that the part https is circled in red

 

Homograph attacks can be highly deceptive. Staying alert is the key to avoiding them. Protecting yourself from homograph attacks is a vital part of online security.