How to protect your browser from Unicode domain phishing attacks

Discussion in 'other security issues & news' started by Minimalist, Feb 22, 2018.

  1. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    https://www.grahamcluley.com/protect-browser-unicode-domain-phishing-attacks/
     
    Last edited by a moderator: Feb 22, 2018
  2. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,537
    I tried the IDN Safe extension on Vivaldi browser, but doesn't works...

    Thanks!
     
  3. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    97,440
    Location:
    U.S.A.
  4. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    5,285
    Just installed a short time ago in Opera! :thumb:

    IDN Safe Extension installed in Opera browser_01.JPG
     
  5. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
    The Firefox and Chrome extensions work.
     
  6. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Yep, just added it to Firefox. Good find.
     
  7. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    IDN Safe extension added to Chrome. TY for the heads up, Minimalist.
     
  8. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    You're welcome.
    I enabled an option in about:config on my system also.
     
  9. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    Thing is, with browser extensions, users have to wonder if Chrome's vetting process has improved, i.e. the question arises as to whether the extension you are adding is going to cause harm on its own. So I come to Wilders and follow advice from people I hold in high regard, and I make a judgement on the rep of the author of the article that is linked. Diligence never sleeps, huh?
     
  10. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    Yes, just added to Chrome thanks.
     
  11. NiteRanger

    NiteRanger Registered Member

    Joined:
    Nov 15, 2016
    Posts:
    651
    Location:
    Far East
    Hi

    What sites to test the extensions?

    Thanks
     
  12. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
  13. NiteRanger

    NiteRanger Registered Member

    Joined:
    Nov 15, 2016
    Posts:
    651
    Location:
    Far East
    Found it, thanks

    FF Quantum - Icon turns Red with counter showing 1 blocked
    Chrome - Icon remains GREEN with counter showing 1 blocked

    You have the same result? I think the extension has a color issue in Chrome browser

    Actually, in FF Quantum v58.0.2 without using the extension it shows

    https://www.xn--pple-43d.com/ at the address bar when I clicked 'www.apple.com' (with Unicode domain) and the below message appears. So FF Quantum v58.0.2 is blocking the site and there's no need to use the extension. It's the same in FF Quantum for Android v58.0.2

    In Chrome (without using the extension) the error message

     
    Last edited: Feb 23, 2018
  14. zapjb

    zapjb Registered Member

    Joined:
    Nov 15, 2005
    Posts:
    5,554
    Location:
    USA still the best. But barely.
    Same here in Vivaldi I think. The green shield did not turn red but Vivaldi did block the page. But I don't know what in Vivaldi or my setup blocked the page. Running BDIS2018. My Vivaldi security extensions are BD TrafficLight, & uBlock Origin.

    Screenshot: 7c1fa61a-934f-439b-b0c1-3a4768328922.jpg
     
  15. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
    No, in Chrome the colour changes to red as it does in FF here.
    I could be wrong but I suspect that is a test site as when I temporarily allow the page is blank.
     
  16. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    Not on my machines, it definitely changes to red using Chrome...
     
  17. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
  18. mekelek

    mekelek Registered Member

    Joined:
    May 5, 2017
    Posts:
    518
    Location:
    Hungary
    thanks Minimalist, added to Yandex, works perfectly fine
     
  19. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    You're welcome. Nice to hear it's working OK :thumb:
     
  20. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
  21. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    It looks like the IDN Extensions were put out days before Chrome fixed the problems. The Extensions have not been updated since they were first put in the chrome store.
     
  22. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,941
    Location:
    USA
    I agree with that timeline. I think I'll disable or remove IDN Safe. I didn't realize that Chrome had addressed this issue so long ago (approximately April of 2017).
     
  23. zapjb

    zapjb Registered Member

    Joined:
    Nov 15, 2005
    Posts:
    5,554
    Location:
    USA still the best. But barely.
    Has FF addressed this issue?
     
  24. guest

    guest Guest

  25. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    5,507
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.