Microsoft 'URL Tracer' Hunts Typosquatters

TonioSop writes "Microsoft Research has released a new tool to help pinpoint large-scale typosquatters that are known to be gaming pay-per-click domain parking services. The lightweight prototype, called Strider URL Tracer, builds on the work within Microsoft's Cybersecurity and Systems Management group to keep tabs on a sophisticated typosquatting scheme that uses multilayer URL redirection to make money from Google's AdSense for domains program. "

Dupe

[liliafan (454080)]

Geez editors this is a dupe I was reading this same article at slashdt.org [slashdt.org] earlier *sigh* :)

Re:Dupe

[onebecoming (965642)]

Here's my favorite misspelling: slsahdot.org [slsahdot.org]

Let's see what the stats look like today.

Yay?

[GrumblyStuff (870046)]

But would MS really like it being used to help fix Google's troubles?

Re:Yay?

[larry bagina (561269)]

Well, this is from Microsoft Research, which is reminiscent of what Bell Labs used to be like. Anyhow, it helps google, but it also throws egg on their face... like when 3rd parties release IE bug fixes before MS does.

Re:Yay?

[SpaceCadetTrav (641261)]

Google owns oingo.com, one of the largest "parked domain" companies out there.

Great news.

[gregarican (694358)]

Now I have a new buzzword to gratuitously throw out there...typosquatting. Sweet.

Re:Great news.

[EggyToast (858951)]

I don't know if it's that new. Cybersquatting's been a term for quite a while, and this is just a type of cybersquatting that's based on typos. Which has also been around for quite a long time; basically as long as people have realized that with web ads, more traffic = more money.

Re:Great news.

[gregarican (694358)]

I have been caught red handed, cybersquatting on the information superhighway. I should be e-rrested immediately.

Re:Great news.

[arivanov (12034)]

There are people who are using specialised software for this and it is a well developed industry.

For example:

Most UK Nildram customers with a static IP have a hostname in the form username.gotadsl.co.uk. Nildram has minimal restrictions on services which you can run (only SMTP is subject to relay check, everything else is fare game). It is also an old business ISP so most people on static IPs are actually running something on these addresses.

So as a result some enterprising individual is running a dedicated

Re:Great news.

[CanSpice (300894)]

Actually, goatadsl.co.uk is a legitimate ISP. I would have gone with them but their download rates are only 1.5 megableats per second.

Re:Great news.

[dr_dank (472072)]

Typosquatting sounds like it was coined by the grammar nazis. Observe its use in such a sentence:

After Tad posted that illiterate post on Slashdot, the grammar nazis typosquatted down and took a big dump all over it.

Typosquatter gone Extinct

[digitaldc (879047)]

And here we have the Typosquatter, a theropod dinosaur, roughly between the early punchcards and their ultimate culmination in the Domain-Squatting dinosaurs. It lived between 1 to 13 years ago, in the Windows Ages.
Of the early Internet period, though one unknown species is from the very late Typewriter period. The various Typosquatter species are bulky omnivores, ranging from approximately 2 to 3 metres (5-8 feet) in height, and averaging about 235 pounds in weight.
Its most distinctive feature was the uncanny ability to take on the likeness of other domains, likely used for trapping its fumbling prey and for phishing scams. It was recently hunted to extinction by Tyrannus Microsoftus using its most effective method of capture, the 'URL Tracer.'

As an added bonus...

[blincoln (592401)]

...if there are more than 1000 participants, Microsoft will pay them each $1000 [snopes.com].

Sleezy - glad someone is looking into it

[fak3r (917687)]

Squatting on domains is one thing, but having them resolve to some default "search" page is just bs - the fact that some of those screens show disneychanel.com mis-spelled going to porn sites makes me sick - kids are going to be misspelling (!) that...fuckers. Then, here's a site that allows you to "park" yr domain to make money on people misspelling (!) URLS:

"Sedo's new Domain Parking Program lets you earn money from your domain names without needing to develop your own site. Even better, Sedo's statistics show that domains parked with Sedo are 5 times more likely to be sold!"

http://sedoparking.com/ [sedoparking.com]

Re:Sleezy - glad someone is looking into it

[generic-man (33649)]

Google AdSense for domains [google.com]

If Google does it, it obviously isn't an evil act.

Re:Sleezy - glad someone is looking into it

[Jafafa Hots (580169)]

But of course, having incorrectly-typed URLs that don't go ANYWHERE automatically resolve to MSN Search is just fine and not opportunistic at all, right? And the fact that shutting down these "typo-squatters" will thereby create more opportunities for people to end up at MSN Search is just a happy coincidence, no?

And then...

[DaedalusLogic (449896)]

The lightweight prototype, called Strider URL Tracer, builds on the work within Microsoft's Cybersecurity and Systems Management group to keep tabs on a sophisticated typosquatting scheme that uses multilayer URL redirection to make money from Google's AdSense for domains program.

And then... Build a spider that hits every single one of those URLs driving Hoodia merchants into debt.

That... would actually be pretty cool.

Help me understand how this helps me?

[RobertB-DC (622190)]

The article sure made a big to-do about how typosquatters target kids, implying that the Bad Guys want to get 11-year-olds to steal their parents' credit cards so that they can visit neopetsporn.com or something.

So, what, I'm supposed to install this on my PC instead of teaching my kids how to hit the "esc" key and then hit "back"? As a parent, I've always figured it was *my* job, not Bill's, to teach my kids to surf safely. Heck, I even gave the rest of my family detailed instructions [magicnumbers.org] on how to respond if they accidentally visited the porn squatter at the dot-com next door to my family's domain name.

Of course, I guess if you're using Internet Explorer, you probably need some sort of blocker for the sites that send you to Popup Hell or otherwise highjack your browser. Strange how I never have this problem myself (coughcough [opera.com]cough).

Is it illegal?

[Camel Pilot (78781)]

So once you catch one of these typosquatters what do you do with them. Is it illegal ?

Another example

[fak3r (917687)]

If you have a domain you can also 'park' it here to earn revenue..

http://www.fabulous.com/ [fabulous.com]

If you don't have one they'll sell you one and have it earn revenue. Are these the sites that just pollute the hell outta search engines so when you search for "mp3 downloads" you get 100s of these results? Is this how they generate revenue?

Plus a URL that I want is hosted there, I thought it might be there's but I suspect it's just someone who bought it through them and is hosting it there !?!? Thanks jacka55e5

Jab at Google

[Coward Anonymous (110649)]

Google's DomainPark (http://www.google.com/domainpark/ [google.com]) which is what typo-squatters use is a source of a large chunk of Google revenue. This could be the beginning of Microsoft's stab at Google's soft (and sleazy) underbelly.

Wow

[TubeSteak (669689)]

AdSense for domains allows domain name registrars and large domain name holders to unlock the value in their parked page inventory. AdSense for domains delivers targeted, conceptually related keywords and advertisements to parked domain name pages by using Google's semantic technology to "understand" the meaning of each domain name. Powering over 3 million domain names, AdSense for domains is the industry's leading parked page service.

From the FAQ [google.com]
5. What is the minimum amount of traffic I need to sign up for a AdSense for domains account?

Your network of sites should generate 750,000 page views per month to be eligible for the AdSense for domains service.

I didn't know Google was into the same dodgy business.
I guess that means it isn't evil...

Talk about yer typos

[chrisbtoo (41029)]

FTFA:

He said the group [...] found more then 7,000 typo-domains.


Priceless.

Even Microsoft, don't forget...

[TheNetAvenger (624455)]

Even Microsoft, don't forget...

Microsoft is a 'big' company, and even as much as we can dislike MS as a whole or things they do or have done, it is easy to forget that a LOT of strong minded tech people work there.

So when MS releases something of benefit it is a bit hard to stomach for a lot of people, but easy once we step back and remember that MS as a whole is comprised of many bright tech people that USE technology on a daily basis, and not even all the people at Microsoft are 'Windows' only people.

MS research is one area that is the most evident of tech minded people without the corporate controls, but good developers exists throughout MS so we can't expect everything they do to be wrong or evil. Look at it from a statistical view if nothing else.

So sure MS will put out selfless tools that help customers and computer users from time to time.

Having been a person that has watched MS for a long time, I remember days when they seemed to care about the little person and companies, and a shift in the mid 90s where that focus was lost. I remember when MS technologies were made and distributed for many OSes, not just Windows. From Media Player to IE, etc. These were free technologies that didn't fit the 'Windows' business model that Ballmer has made the central focus of the company, unfortunately.

The potential for this concept of business to return is there. Ballmer is a business person, not a true tech person, nor an innovative mind when it comes to technology. He is the face of the evil side of MS, and Bill G. giving control to him is the biggest mistake of MS history.

If I was going to paint the evil face of MS it would be Ballmer and his followers. I don't think Gates understands business enough to realize this, nor do I think he is inherently a business only person. His parents were very charitable and pushed for making peoples lives better. His failure is in not recognizing the evil aspects of business and the greed that is can create and is embodied in Ballmer.

So offtopic a bit, but the foundation of my views on this technology. Not everything at MS is evil and there still exist people there with the original 'empowering' concepts that flourished pre-Ballmer mindset and control. Gates use to wrangle him in, and for whatever reason stopped, and MS became the company they fought against for years at Ballmers control and advice.

So it is nice to see from time to time evidence that the non-Ballmer business model still does exist within MS, who knows, maybe there is hope for them to figure out the Ballmer and his followers mistakes and go back to a company that gives a crap.

They did something like this once before

[Phat_Tony (661117)]

It's no surprise Microsoft is doing this, because they have some history with making tracing programs.

I remember that years ago Bill Gates got together with Disney to make an email-tracing program. It's great to hear they're working on something similar again, because the people who took part in the beta testing for the email tracing program were supposed to be really handsomely rewarded. I think they got, like, $10,000 for every person they forwarded it to, or something.

I wonder where I can sign up to test this program?