Typosquatting
Typosquatting is an attack in which an attacker registers a domain name with a common misspelling of an existing domain, so that a user who misspells a URL they enter into a browser is taken to the attacker’s website.
- may also register a hijacked subdomain using the primary domain of a trusted cloud provider, such as
onmicrosoft.com- message appears to come from
example.onmicrosoft.com- many users will be inclined to trust it
- message appears to come from