The NFTs or non-fungible tokens are digital files that are stored on the blockchain ecosystem with an encrypted certification that cannot be copied. After Beeple sold an NFT masterpiece on Christie’s auction for $60 million, the NFT craze caught fire in the crypto-verse. Following Beeple, many musicians, artists, and meme-makers turned websites like Rarible and Opensea into a prime location for buying, selling, and minting NFTs.
However, since these platforms are flocked by millions of users from every part of the world, the NFT con artists also exploit these platforms to run their malicious links and redirect users to malware and ghost websites. Last month, Rarible uncovered a long list of scam websites that were using the Typosquatting domains for tricking unsuspecting victims and con them out of their crypto holdings.
How the Typosquatting Works
The Typesquatting domains are the type of web addresses that try to copy the domain address or its components like subdomain, TLD, protocols etc., from source website like Rariable. The representative from cybersecurity enterprise Bolster explains that if Rarible.com is a legitimate website, scammers will try to construct closely similar websites like rarbile.com, wwwrarible.com, rareble.com, rareible.com, and other such renditions.
The search engines like Google try to keep these websites out of the search results. However, scammers attempt to trap users through different channels like messenger marketing, spamming, and fake social media accounts. When the unsuspecting victims click on these websites, they redirect the users to websites with games, dating sites, and such places from where they can steal their data and track their online activities.
Stay Away from Typosquatting Websites
Stealing data does not sound like a very bad issue for the users. However, some typosquatting domains can be used to install Trojans that could steal the passwords that are saved on a browser. These types of scams can cause a lot of damage to any person and take control of the financial information and personal information from all ends.
Therefore, the users should pay close attention to the websites and marketplace domain names. Download the official applications from the verified app stores only. Avoid clicking on suggestive websites that seem suspicious. Install security extensions on the browsers that would allow the system to block malicious websites and malware automatically.