New Phishing Tactic Targeting Facebook Users Relies on Padding URLs with Hyphens
Security researchers from PhishLabs have come across a new phishing trend that’s targeting mobile device owners exclusively, with ”the highest proportion of attacks” aimed at Facebook users.This new tactic relies on the fact that mobile browsers have very narrow URL address bars, which prevents users from viewing the entire contents of a link. Phishers are taking advantage of this UI inconvenience to pad URLs with subdomains and hyphens, making some links look authentic on mobile devices.For example, take the following URL, seen by PhishLabs experts in real-world attacks.hxxp://m.facebook.com—————-validate—-step1.rickytaylk[dot]com/sign_in.htmlThe real domain of this website is rickytaylk.com, and not ”m.facebook.com”. Because a mobile browser will show only the first part of the URL, users will see only the ”m.facebook.com” section, followed by an endless stream of hyphens.
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.