All the latest UK technology news, reviews and analysis
|
|
|
28 Feb 2011
Security experts are warning that spammers are taking advantage of internationalised domain names (IDNs) owing to their increasing availability and low cost.
IDNs allow domain names to be written in non-Latin characters such as Arabic, Cyrillic and Chinese.
The introduction of IDNs has been a long-running project for internet oversight body Icann, and is now reaching the implementation stage with top level domains such as .рф for Russia.
However, Symantec.cloud's MessageLabs Intelligence team warned that spammers are using IDN registered domains in order to redirect people clicking on links within emails to spam sites.
Senior MessageLabs software engineer Nick Johnston highlighted a recently discovered German spam email promoting erectile dysfunction drugs that includes links to a popular URL shortening site.
"A recipient clicking on one of these links is first redirected to a site with a Cyrillic domain name. This shows a 'landing page' for one second, and then redirects to a site claiming to be a Swiss pharmacy," he said in a blog post.
However, Johnston added that the recipients are not likely to be aware that they are travelling via an IDN unless they watch their address bar very carefully while the landing page is being shown.
"MessageLabs Intelligence expects the use of IDNs in spam to increase in the coming months, especially as it may be easier to find unregistered IDN domains, " he said.
"Some registrars are likely to encourage wider adoption of IDNs and are expected to offer some registries at low prices, as we've seen with the introduction of other new top-level domains in previous years."
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
Orange and Intel talk us through the ins and outs of their San Diego smartphone
Connect with V3.co.uk
Social networking is almost ubiquitous. This white paper examines the benefits and risks and it looks at the different ways companies can reconcile them
The importance of understanding your infrastructure
Lead/Project Engineer Microsoft VMware SAN Networking...
SENIOR APPLICATION TESTER. Assen, Netherlands. €1k-€1...
Project Manager - Trading Systems - up to £85'000...
SAS Senior Analyst- up to £55,000 Industry: Marketing...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Look alike characters
The biggest problems with IDN's are the characters in cyrillic and other languages that look like other ascii characters and thus fool people into clicking on something that only looks familiar.
Posted by: Eryn 10 Mar 2011
So?
I don't understand what the problem here is. Why is it relevant that IDNs are being used? There doesn't seem to be an explanation in this story or the original Symantec blog post. Everything described has been done with ASCII domains for years, surely.
Posted by: Kevin Murphy 28 Feb 2011
hypocritical claptrap
Where is the evidence that IDN are cheaper?
Posted by: Dave Wrixon 28 Feb 2011