← Back to Glossary

Typosquatting

Typosquatting is a cyberattack where bad actors register domain names that closely resemble legitimate brands — exploiting common typing errors to redirect users to malicious websites, phishing pages, or scam shops.

How Typosquatting Works

Typosquatters exploit predictable human behavior. When users type URLs manually, they make mistakes — transposing letters, hitting adjacent keys, or misspelling words. Attackers anticipate these errors and register the misspelled domains before anyone else.

The attacker then uses the domain for one or more malicious purposes: phishing (stealing login credentials), distributing malware, displaying ads for revenue, selling counterfeit goods, or simply redirecting traffic to a competitor.

Common Typosquatting Techniques

Character omission removes a letter: amazn.com instead of amazon.com. Users scanning quickly may not notice the missing character.

Character transposition swaps adjacent letters: gogole.com instead of google.com. This exploits fast typing where fingers hit keys in the wrong order.

Adjacent key substitution replaces a character with one next to it on the keyboard: facebool.com instead of facebook.com. The k and l keys are adjacent.

Added character inserts an extra letter: faceboook.com with an extra o. Doubled vowels are a common target because they look natural.

Wrong TLD uses a different domain extension: amazon.org instead of amazon.com, or brand.co instead of brand.com.

The Scale of the Problem

Typosquatting is not a niche threat. Research shows that major brands can have hundreds or thousands of typosquatting domains registered against them at any given time. These domains are registered cheaply ($10-15 each) and can be set up in minutes, making it a low-cost, high-reward attack for bad actors.

For brand owners, the challenge is monitoring the constantly growing domain landscape. New TLDs (like .shop, .online, .site) have multiplied the attack surface. Manual monitoring is no longer feasible — automation is required.

Typosquatting vs. Cybersquatting

While related, these are distinct threats. Cybersquatting is registering a domain identical to a trademark with the intent to profit from it — typically by selling it back to the brand owner. Typosquatting specifically relies on user typos and misspellings to capture traffic.

Both are addressed through UDRP proceedings, but typosquatting can be harder to detect because the domain variations are nearly unlimited.

Related terms

Cybersquatting

Cybersquatting is the bad-faith registration of a domain name that is identical or confusingly similar to a trademark, typically with the intent to profit by selling it to the trademark owner or exploiting their brand recognition.

Domain Abuse

Domain abuse (also called DNS abuse) refers to the malicious use of domain names to conduct phishing, distribute malware, impersonate brands, or perpetrate fraud. ICANN defines five categories of DNS abuse: phishing, malware, botnets, pharming, and spam used to deliver other forms of DNS abuse.

UDRP

The Uniform Domain-Name Dispute-Resolution Policy (UDRP) is an administrative proceeding established by ICANN in 1999 for resolving disputes over domain names that are alleged to be registered in bad faith. It provides a faster and cheaper alternative to court litigation for trademark owners.

DNS Monitoring

DNS monitoring is the practice of continuously tracking Domain Name System records and changes to detect potential brand threats — including new domain registrations that impersonate a brand, DNS record changes that signal malicious activity, and infrastructure patterns associated with phishing and counterfeit operations.

Your brand is likely already being impersonated somewhere online.

In the demo we show you:

  • How many active threats target your brand right now

  • How quickly Astra detects them

  • How fast they can be removed with instant approval

Get Started Now
Get Started Now

Fight AI with AI

hello@astraobp.com

How it worksPricingLogin
For law firmsFor brands
BlogGlossary
About us
© 2026 Astra OBP Inc