@inbook{c3983d87ad2e4c7fa020e5a3512a2d8c,
title = "Soundsquatting: Uncovering the use of homophones in domain squatting",
abstract = "In this paper we present soundsquatting, a previously unreported type of domain squatting which we uncovered during analysis of cybersquatting domains. In soundsquatting, an attacker takes advantage of homophones, i.e., words that sound alike, and registers homophoneincluding variants of popular domain names.We explain why soundsquatting is different from existing domain-squatting attacks, and describe a tool for the automatic generation of soundsquatting domains. Using our tool, we discover that attackers are already aware of the principles of soundsquatting and are monetizing them in various unethical and illegal ways. In addition, we register our own soundsquatting domains and study the population of users who reach our monitors, recording a monthly average of more than 1, 700 non-bot page requests. Lastly, we show how sounddependent users are particularly vulnerable to soundsquatting through the abuse of text-to-speech software.",
author = "Nick Nikiforakis and Marco Balduzzi and Lieven Desmet and Frank Piessens and Wouter Joosen",
note = "Publisher Copyright: {\textcopyright} Springer International Publishing Switzerland 2014.",
year = "2014",
doi = "10.1007/978-3-319-13257-0\_17",
language = "English",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "291--308",
editor = "Chow, \{Sherman S.M.\} and Jan Camenisch and Hui, \{Lucas C.K.\} and Yiu, \{Siu Ming\}",
booktitle = "Information Security - 17th International Conference, ISC 2014, Proceedings",
}