Domain impersonation, also known as typosquatting, is often used as part of a conversation hijacking attempt. Attackers target legitimate domains, such as Barracuda.com by creating domains that appear similar. Such a domain might be accessed by a user typing the legitimate domain incorrectly, either with a misspelling or incorrect top-level domain:
Email gateway defense against domain impersonation is prone to error and needs continuous management and updates. API inbox defense uses past email communications to get information on domains used by the company. When an impersonation comes in, the attack can be detected and blocked.
Domain impersonation is one of the email threat types examined in our free e-book, 13 Email Threat Types to Know About Right Now. The Barracuda Total Email Protection Bundle offers a complete suite of email protection to help defend your company from these attacks. For more information on how to protect yourself, download the e-book here.
Christine Barry is Senior Chief Blogger and Social Media Manager at Barracuda. Prior to joining Barracuda, Christine was a field engineer and project manager for K12 and SMB clients for over 15 years. She holds several technology and project management credentials, a Bachelor of Arts, and a Master of Business Administration. She is a graduate of the University of Michigan.
Connect with Christine on LinkedIn here.