How this could affect you: Bad actors could utilize this to create url links to malware or phishing attempts.
How to spot it and avoid it:
Look for '@' symbols in urls such as www.website.com⁄files⁄@badfile.zip.
Look at the slash in the url. Bad actors are using unicode fraction slashes in the url which look almost identical to a standard slash except with a slightly lower angle. A standard slash looks like this: "/" A unicode fraction slash looks like this: "⁄" Side-by-side comparisons: /⁄
Terms used in this blog post:
Unicode: A universal code that can translate numbers into symbols, numbers, or letters.
Top-Level Domain: Every website has an address just like houses do. The Top-Level Domain is the street type of the address. In this case a .com, .org, or .net.
Additional resources: https://www.theregister.com/2023/05/17/google_zip_mov_domains/
Comentarios