Bitsquatting: Exploiting Bit-Flips for Fun, or Profit?

Provided by: Association for Computing Machinery
Topic: Security
Format: PDF
Over the last fifteen years, several types of attacks against domain names and the companies relying on them have been observed. The well-known cyber-squatting of domain names gave way to typo-squatting, the abuse of a user's mistakes when typing a URL in the user browser's address bar. Recently, a new attack against domain names surfaced, namely bitsquatting. In bitsquatting, an attacker leverages random bit-errors occurring in the memory of commodity computers and Smartphones, to redirect internet traffic to attacker-controlled domains.

Find By Topic