A fix to reconize Look-Alike Domains and Visual Confusion put out by Krebs security
Ivy
Posts: 7,165
Hi peoples, I dunno if anyone else has been experiencing URL misdirect or if your AV has reported mis match URL to you. . But recently I've been getting alot redirection URL when using firefox from what I have been getting for reports on Kasperkey AV the url's were being reported as fake sites or mis match URL's which were pretty easy to tell they were not the same site you typed. but still reported as ir had the same internet address or URL. . I had noticed this for while, then got a news letter from Krebs today which hit the nail on the head to why. here is his web site that addresses how to fix this issue https://krebsonsecurity.com/2018/03/look-alike-domains-and-visual-confusion/ . for those of us that use the internet for everything & who have to judge the legitimacy of domains before we put in our credit card numbers or pay bills online, this is a worthy read and may save you from heartache in the futures
Daz 3D is part of 
Connect
DAZ Productions, Inc.
7533 S Center View Ct #4664
West Jordan, UT 84084
Licensing Agreement | Terms of Service | Privacy Policy | EULA
© 2026 Daz Productions Inc. All Rights Reserved.
Comments
This would be an issue only if you clicked on, or copied and pasted, a look-alike link. it would have no bearing on your exisitng bookmarks or manually typed addresses - if you have been getting alerts from general use then something else is going on on your system.
this was a issue for me a while back when someone kept trying to get my CC at one of the 3d sites, during purchase of a product my email would receive a sale reciet and a few minutes later I would get another one stating my CC didn't;t not go through and they provided me a Store link. my AV would give me a mis-direct URL alert. But the domain on the address bar said it belong to said 3dsites. I reported it to said site like 3 times, before it finely stopped. I'm not going to start anything by mentions other sites issues it was a few months back. I primary use Firefox & if I knew about this punycode thingy it would have been much easier to recognize fake URL sites , thats all I am saying . its not a issue for chrome or Edge browsers either seems to be just firefox , which I am a user of
My firefox shows the real link address in the little hover-like thingy at the bottom - clicking the link in the article also shows the real address briefly before resolving to the fake one.
I guess I just got used to looking at the hover thing before clicking any links (as text-to-link can be used to replace any of them - isn't this what phishing is?)
Because I've been bitten before with my CC at a site I trusted and because I'm paranoid to the point of being ridiculous, I never EVER click a link from inside an email even if it was from a site I was expecting an email from. I go to the address bar and type the address of the site.
Laurie
And this is why some folks I know adamantly refuse to use HTML based email, or any email front end that does not support sending and receiving plain text emails.