Scary Phishing Attacks By Using PunyCode

What is a Phishing attack?

We are talking and hearing about phishing attacks frequently. It is the attempt to retrieve your confidential information such as your passwords, account numbers and credit card details by disguised as a trustworthy entity in an electronic communication. you have an email to our inbox from SBI, ICICI, Facebook, Google like an official mail.

You are thinking that it is true and click on that mail. Then you will see the page like original bank website. Then you will submit your information related to the internet banking username and password. Then this information will go to the hacker not to the bank. This is exactly phishing attack.

How Can We identify them?

They changes the website names with the little effects. we can identify them with the close observation.

New phishing attacks are growing day by day. Punycode is a way to represent Unicode within the limited character subset of ASCII used for Internet host names. Using Punycode, host names containing Unicode characters are transcoded to a subset of ASCII consisting of letters, digits, and hyphen.

If hackers register the website in punycode format to unicode, then that website will be seen like a original site in your chrome and firefox browsers. For example xn--pple-43d.com is a punycode. A hacker can register the website with this name. In ASCII format it will be apple.com. So if any hacker register their site and send the link to you with the name of xn--pple-43d.com, then it shows apple.com in your firefox and chrome browsers.

However this attack is not effected in Microsoft edge, interenet explorer and safari web browsers. This attack is found in chrome and firefox browsers.

Firefox users can tackle this attack by going to about:config and setting network.IDN_show_punycode to true.

Chrome is expected to fix this in it’s upcoming browser update. So please be aware of the website when you are entering the confidential information.