Title: {Beware}: Crypto Currency give-away spoof puny-code domains Post by: Baofeng on September 25, 2019, 03:46:51 AM https://twitter.com/kyleehmke/status/1175128078655401998
https://i.ibb.co/mGmS7rm/Screen-Shot-2019-09-25-at-11-40-31-AM.png (https://ibb.co/vHbD8Cb) Code: - xn--mdium-n51b[.]com Again, this is just a friendly and gentle remainder to everyone. Title: Re: {Beware}: Crypto Currency give-away spoof puny-code domains Post by: bitmover on September 25, 2019, 12:08:24 PM Code: - xn--mdium-n51b[.]com Those are too obvious domains scam. Who would click on such URL? This is basic common sense... For a promisse of a giveaway, a few cents of a token which has no value.... Title: Re: {Beware}: Crypto Currency give-away spoof puny-code domains Post by: whtchocla7e on September 25, 2019, 12:28:19 PM Code: - xn--mdium-n51b[.]com Those are too obvious domains scam. Who would click on such URL? This is basic common sense... For a promisse of a giveaway, a few cents of a token which has no value.... Title: Re: {Beware}: Crypto Currency give-away spoof puny-code domains Post by: o_e_l_e_o on September 25, 2019, 02:32:08 PM Those are too obvious domains scam. Who would click on such URL? Those are the punycode versions, not the ASCII versions. The subdomain of those URLs listed above would display in your browser's address bar as follows:Code: mẹdium To protect yourself from this kind of attack, in Firefox open a new tab, type about:config, accept the warning, search for "punycode", and change the value of network.IDN_show_punycode to true. This will change the URL in your browser from the examples I've given in this post to instead display as the examples Baofeng has given in his (so from mẹdium to xn--mdium-n51b, for example). Title: Re: {Beware}: Crypto Currency give-away spoof puny-code domains Post by: masulum on September 25, 2019, 05:07:35 PM For members who don't understand, what's wrong about medium, medium and stellar in o_e_l_e_o post above, try to copy text to word/notepad etc, and change font size. And you will see the result like image below.
https://i.postimg.cc/nhL67Yb3/image.png Title: Re: {Beware}: Crypto Currency give-away spoof puny-code domains Post by: hugeblack on September 26, 2019, 03:50:40 PM To @OP, I think this topic[1] has covered all the information about Punycode so it is better to quote it or add the link in the topic.
Also, "SSL certificate is valid" Doesn't mean you are safe, check out[2] Secondly, we're in 2019, don't expect anyone to give you money for free, especially Crypto Currency give-away. :D :D :D Old school scam [1] What is Punycode and how to protect yourself from Homograph Phishing attacks? (https://bitcointalk.org/index.php?topic=5184169.msg52439531#msg52439531) [2] https://bitcointalk.org/index.php?topic=5184169.msg52506958#msg52506958 (https://bitcointalk.org/index.php?topic=5184169.msg52506958#msg52506958) |