A Doppelganger Domain is a domain spelled identical to a legitimate fully qualified domain name (FQDN) but missing the dot between host/subdomain and domain, to be used for malicious purposes.

Overview

Typosquatting's traditional attack vector is through the web to distribute malware or harvest credentials. Other vectors such as email and remote access services such as SSH, RDP, and VPN also can be leveraged. In a whitepaper by Godai Group on Doppelganger Domains, they demonstrated that numerous emails can be harvested without anyone noticing.

See also

• Anticybersquatting Consumer Protection Act
  Anticybersquatting Consumer Protection Act
  The Anticybersquatting Consumer Protection Act ', 15 U.S.C. § 1125, is an American law enacted in 1999 and established a cause of action for registering, trafficking in, or using a domain name confusingly similar to, or dilutive of, a trademark or personal name...
  
  
• DNS
  Domain name system
  The Domain Name System is a hierarchical distributed naming system for computers, services, or any resource connected to the Internet or a private network. It associates various information with domain names assigned to each of the participating entities...
  
  
• Phishing
  Phishing
  Phishing is a way of attempting to acquire information such as usernames, passwords, and credit card details by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, online payment processors or IT...
  
  
• UDRP
  Uniform Domain-Name Dispute-Resolution Policy
  The Uniform Domain-Name Dispute-Resolution Policy is a process established by the Internet Corporation for Assigned Names and Numbers for the resolution of disputes regarding the registration of internet domain names...