Fake sites with web addresses designed to trick people (Source: Microsoft)
Microsoft’s revelation that websites controlled by a group with ties to the Russian government is not only a warning to political operatives from both parties, but to everyone who receives email or goes to websites.
Realistic looking URLs
The sites in question used domain names that were similar — but not identical — to prominent conservative think tanks in an attempt to lure people into visiting those sites.
One example of a fake site was “Hudsonorg-my-sharepoint.com,” which included the the name and URL (web address) of Hudson Institute whose real URL is Hudson.org. Another is my-iri.org, a spoof site posing as the International Republican Institute whose actual URL is IRI.org.
Here’s Microsoft’s blog post about what they found and their continued efforts to “help protect the democratic process.”
Look at web addresses carefully
My warning: Look at the web address of any site before you click or provide any information.
If you get an email asking you to visit a site, examine the URL before you click on it. Usually (though not always) the organization’s name will be just before the .com, .org or .net. Most prominent organization’s URL will end in one of those domains rather than something like .email or .group. This isn’t a hard-and-fast rule. Some organizations might choose one of those newer domain designations and sometimes a group can’t get a URL with its own name so it has to change it up a bit.
If you see something that looks like a derivation of the group’s name, that should — at least — be a yellow flag. When in doubt do a search, but even then there is the possibility of a bogus listing, especially if it’s not the first search result for that organization.
Don’t fall for a realistic looking website. It’s very easy for to create a site that looks exactly like the site it’s spoofing and if the hackers are sophisticated (as they almost are when affiliated with governments), there may be no telltale signs other than the web address.
Dangers of spoofed sites & cautionary tales
Also, never enter any personal information on a site unless you’re very certain it’s legitimate. This is a way for attackers to harvest names and contact information and, if you make a donation or purchase, steal both your money and your credit card information which it can then exploit or sell to other criminals.
But even if you don’t enter personal information, the site can easily track your IP address (which, in some cases, can be traceable to you, or your company, if you’re at work) and it’s possible for a site to download malware on your device, which can give hackers control of your device and access to your files, the websites you visit and what you type at the keyboard.
Also be careful about what you download. A PDF or other file on a fake site could subject you to malware.
Beware of search results
Usually, but not always, if you search for an organization or company, its legitimate site will come up as the first site in the actual listing. HOWEVER, it is possible that a fake or unrelated site could come up first and some may come up shortly below the first. Also, it is very possible that a site not affiliated or owned by the company or organization will be listed above the search results.
For example, if you search HP support, you will probably get a site at HP.com as your first listing, but you will also get sites that are not affiliated with HP. Such as the one depicted below, whose URL begins with “HPsupportassistant.”
Looks like an HP site — but it’s not
It almost happened to me
I hate to admit this, but I almost fell for such a scam. My HP printer had a paper jam that I couldn’t fix so I searched Google for “HP Support” to find their phone number and accidentally wound up calling a third party. My first clue was that a person answered the phone right away (sadly that almost never happens with real support lines) but when I explained that I had a paper jam, he asked me to download software so that he could “fix” it. I knew there is no software fix for a paper jam and took another look at the site and hung-up when I realized I had fallen for a fake one. I knew that for sure, when I realized that the site didn’t end in HP.com, which is the official URL for HP.
Take some time to avoid ‘wrong turns’
We’re all in a hurry and we have a tendency to click on web addresses and even links on sites we visit without giving it too much thought. I’m guilty as are many others. But we need to be a little more thoughtful. Just as we avoid turning down the wrong street when we’re walking or driving, we need to avoid going to the wrong sites when we’re online.