Skip to main content

Don’t mistype that URL, as it could lead to malware

Typo prone? You may want to clean up your act. In a malicious trend known as typosquatting, hackers are now taking advantage of our fast fingers and careless errors, attempting to send malware onto Macs by way of mistyped URLs. According to the security company Endgame, a whopping 300 popular .com sites have been registered in Oman, whose top level domain is .om. But this is only a cover — the .om sites try to load OS X malware known as Genieo onto the Apple devices of unsuspecting users.

Endgame first came across typosquatting when an employee made a typo in “www.netflix.com,” instead typing, “netflix.om.” As Endgame notes, “He did not get a DNS resolution error, which would have indicated the domain he typed doesn’t exist.  Instead, due to the registration of “netflix.om” by a malicious actor, the domain resolved successfully.” Luckily, being an Endgamer, he was able to spot the malware, and “retreated swiftly, avoiding harm.”

Recommended Videos

Other less savvy users, however, may not have been as lucky. The malware Genieo, Endgame notes, is a rather “common OS X malware/adware variant” that “typically infiltrates the user’s system by posing as an Adobe Flash update.” If the user accepts the update, then Genieo “entrenches itself on the host by installing itself as an extension on various supported browsers (Chrome, Firefox, Safari).”

Typosquatting isn’t all that new — indeed, malware has previously been delivered by way of mistyped addresses. But Endgame does say that it hasn’t previously come across “.om abuse.” So how concerned should we be? The security firm suggests, “Our research also indicates that .om domains associated with the vast majority of major brands may be unregistered. It does not appear that are widely including the .om in their typosquatting mitigation strategies. We strongly recommend doing so.”

So be careful when you’re typing, friends. This is one type of “om” you want nothing to do with.

Lulu Chang
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
I tried using a paid search engine for a week, and I don’t think I’ll go back
Kagi search bar in light mode.

After making the decision to ditch Google Search a few months ago, I've been making it a point to keep an eye out for new products to try. Amusingly, it took me quite a while to realize there are actually paid search engines out there, but once I knew about them, I was instantly interested.

I decided to try one out for just a week to see how it felt -- I had already improved my search situation a lot by switching my default engine to Qwant, so what I really wanted to know was how much extra benefit I could get from a paid service.

Read more
The latest AMD GPU probably isn’t for gamers, but compact builders could love it
The Zephyr DUAL ITX RX 6500 GPU.

When most of us think of new GPU releases, our minds turn towards some of the best graphics cards. In AMD's case, that would currently mean the RX 9070 XT. But AMD is known for dipping back into previous generations, and this GPU proves just how far back AMD (or its partners) are willing to go to launch a new product. The question is: Does anyone really need it?

The GPU in question is the RX 6500. This is a non-XT, base version, and it was spotted by realVictor_M on X (Twitter). Made by Zephyr, the GPU never got as much as an official announcement from AMD. Instead, the card simply appeared on the market, and so far, Zephyr appears to be the only AIB (add-in board) partner making the RX 6500. It's referred to as Dual ITX, and it does seem perfect for a small build.

Read more
Apple’s dual Vision Pro plans could finally convince you to pick one
A person wearing the Apple Vision Pro demo unit in an Apple Store.

Apple’s Vision Pro headset is undoubtedly an engineering marvel, but it failed to create a market upheaval that the company may have expected. As per industry analysts, a sky-high asking price of $3,500 and a lack of diverse software experiences cooled down the hype around it. 

It seems Apple is going to fix the core mistakes with its next attempt. In fact, the company is reportedly working on two new headsets. One of them will focus on bringing the price down, while the other headset will fill a crucial computing gap. 

Read more