https://www.wordfence.com/blog/2017/04/ ... -phishing/
Nasty.
Chrome & Firefox Phish Attack Uses Domains Identical to
Chrome & Firefox Phish Attack Uses Domains Identical to
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball NoScript FlashGot AdblockPlus
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:49.0) Gecko/20100101 Firefox/49.0 SeaMonkey/2.46 Lightning/.4.46
Re: Chrome & Firefox Phish Attack Uses Domains Identical to
If to switch network.IDN_show_punycode;true, the Cyrillic domains are displayed incorrectly:
http://xn--80agdepgfuajcazx2e.xn--p1ai/ instead of http://антонгородецкий.рф/ even if network.IDN.use_whitelist;true
and network.IDN.whitelist.xn - p1ai;true.
It is possible to use network.IDN.restriction_profile;strict
http://xn--80agdepgfuajcazx2e.xn--p1ai/ instead of http://антонгородецкий.рф/ even if network.IDN.use_whitelist;true
and network.IDN.whitelist.xn - p1ai;true.
It is possible to use network.IDN.restriction_profile;strict
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:41.0) Gecko/20100101 SM/2.38 NS/2.9.0.12
Re: Chrome & Firefox Phish Attack Uses Domains Identical to
Bug 1332714 IDN Phishing using whole-script confusables on Windows and Linux
@fatboy, thanks for that link. Íňťéŕíšťíňg ŕéáďíňg.
@fatboy, thanks for that link. Íňťéŕíšťíňg ŕéáďíňg.
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball NoScript FlashGot AdblockPlus
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:49.0) Gecko/20100101 Firefox/49.0 SeaMonkey/2.46 Lightning/.4.46
Re: Chrome & Firefox Phish Attack Uses Domains Identical to
Pale Moon unstable add a about:config setting to controll that:
Added an option to display punycode domain for IDN websites to combat phishing.
Preference: browser.identity.display_punycode
0 = Display IDN name in identity panel (previous behavior)
1 = Display punycode name for DV SSL domains (default)
2 = Also display punycode for HTTP sites if IDN name used
from https://www.palemoon.org/unstable/releasenotes.shtml
Added an option to display punycode domain for IDN websites to combat phishing.
Preference: browser.identity.display_punycode
0 = Display IDN name in identity panel (previous behavior)
1 = Display punycode name for DV SSL domains (default)
2 = Also display punycode for HTTP sites if IDN name used
from https://www.palemoon.org/unstable/releasenotes.shtml
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:45.9) Gecko/20100101 Goanna/3.2 Firefox/45.9 PaleMoon/27.3.0b1