Industrial control systems vendors get careless about domain squatting

Many companies protect their brands by registering domain names that are slight variations on their own, but manufacturers of industrial control systems don’t seem to have followed suit, potentially leaving customers open to attack.

Researchers from security consultancy Digital Bond have found 433 so-called “squat” domains whose names are similar to those of 11 industrial manufacturers, and which have been registered by unknown third parties. Some of the domains have been hosting scams, malicious redirects and malware.

Attackers engage in domain squatting for various reasons: to host phishing pages in order to steal credentials, direct accidental visitors to malware, profit from the brand’s popularity by displaying ads, or sell the domain to the brand owner for a large fee.

To read this article in full or to leave a comment, please click here

Read more: Industrial control systems vendors get careless about domain squatting

Story added 10. June 2016, content source with full text you can find at link above.