I've been noticing that my organization keeps encountering look-alike domains that have been cleverly misspelled. Since we sell tickets online, I'm quite concerned that these domains might be set up to phish for our customers' credit card information. When I'm alerted about these domains, I usually reach out to the provided abuse email from the WHOIS info, though that hasn't led to any actions being taken. I also create DNS records to redirect these domains to 0.0.0.0 just as a precaution. I've heard about the UDRP/Domain Dispute Resolution Services by WIPO, but my understanding is pretty basic. I'm planning to recommend that we proactively register some of those misspelled domains and redirect them, but I'm wondering if there are any other steps I can take that are within my control?
5 Answers
I've heard of services like Red Sift Brand Trust that keep an eye on impostor sites and look-alike domains. They might be helpful for your situation if you want continuous monitoring.
Honestly, unless those domains are actually pretending to be your company, there’s not much you can do. It’s definitely worth having a chat with your legal department, though. My company uses a service that monitors for sites mimicking us, and they handle the takedown process.
You might want to consider purchasing similar domains before someone else does. Another good option is to educate your users about these threats. While UDRP is a viable path, explaining to your organization about the limitations you have in tackling this issue could help set realistic expectations.
After I started as a sys admin, I bought a bunch of look-alike domains myself. UDRP sounds interesting, but you might also want to ensure you’re using SPF, DKIM, and DMARC for email security. Those are great defenses against spoofing.
Just a quick tip: make sure your emails have 'EXTERNAL' tags and clear warnings so users know they didn’t come from your legit domains. That can help prevent some phishing attempts.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures