Typosquatting registers domain names that are common misspellings or typographical errors of popular domains, capturing traffic from users who mistype URLs. Attackers use these domains for phishing, malware distribution, or advertising revenue. Common typosquatting techniques include character omission (gogle.com), adjacent key substitution (goofle.com), character transposition (googel.com), and homograph attacks using visually similar Unicode characters. URL shortening services face typosquatting risks on two fronts: their own short domains may be typosquatted to intercept traffic, and shortened URLs may redirect to typosquatted destinations. Services should monitor for typosquatted variants of their domains and scan destination URLs against known typosquatting databases to protect users from deceptive redirects.
Typosquatting
An attack technique that registers domains similar to popular ones, targeting common typos, for phishing or ad revenue. Damage escalates when combined with URL shortening.
Jan 6, 2026 · About 1 min read
Was this article helpful?
Related Terms
Homograph Attack
A phishing technique that uses visually similar Unicode characters to impersonate a legitimate domain. Extremely difficult to detect by eye.
Phishing
A cyberattack that uses deceptive links and websites to trick users into revealing sensitive information.
Link Shortener Abuse
The misuse of URL shortening services for phishing, malware distribution, spam, and other malicious purposes. Countermeasures are required from both service providers and users.
Open Redirect
A web application vulnerability that redirects users to any externally specified URL without validation. Exploited in phishing attacks.
Custom Domain
A privately owned domain name used with a URL shortening service instead of the service's default domain.
Subdomain Takeover
An attack where a third party hijacks a subdomain with orphaned CNAME records, exploiting the trust of the legitimate domain.
Related Articles
How to Spot and Prevent Phishing Attacks Using Short URLs
Learn to identify phishing attempts that exploit short URLs. Practical tips for protecting yourself and your organization from link-based scams.
Short URL Security Guide - Best Practices for Safe Link Sharing
A comprehensive guide to short URL security best practices. Understand the risks and learn how to share links safely and responsibly.
How to Spot Suspicious URLs - 5 Checkpoints to Avoid Getting Tricked
A beginner-friendly guide to spotting phishing scams. Learn 5 easy checkpoints including the https padlock, domain reading tricks, and short URL safety.
Ready to create a short URL?
Shorten a URL for Free