START A PETITION 25,136,189 members: the world's largest community for good
START A PETITION
x
1,313,312 people care about Politics

Typos Could Lead to Security Breaches and Cybertheft

Typos Could Lead to Security Breaches and Cybertheft

 

Another reason to read, reread and proofread before you hit “send” while emailing: Bad spelling and even just leaving out a single period can mean your messages could end up in the clutches of cyber thieves. The BBC cites a new study by Peter Kim and Garret Gee of the Godai Group which found that about 30 percent of 500 top US companies are “vulnerable” to a security breach because of the way they’ve set up their email systems:

While most have a single domain for their website, many use sub-domains for individual business units, regional offices or foreign subsidiaries.

Dots or full stops are used to separate the words in that sub domain.

For example a large American financial group may take bank.com as its corporate home but internally use us.bank.com for staff email.

Usually, if an address is typed with one of the dots missing, ie usbank.com, then the message is returned to its sender.

But by setting up similar doppelgänger domains, the researchers were able to receive messages that would otherwise be bounced back.

Using these “doppelgänger domains,” cyber thieves can steal “trade secrets, user names and passwords, and other employee information,” the authors of the study write.

Kim and Gee actually created web domains with commonly mistyped names and found themselves receiving emails that would not otherwise have come to them. According to the BBC, “over six months they grabbed 20GB of data made up of 120,000 wrongly sent messages,” with some of those emails containing valuable information in the form of user names, passwords and “details of corporate networks.”

Furthermore, the researchers did follow-up work and found that many addresses which closely resembled corporate domains were owned by individuals in China, or could be traced to websites associated with malware or phishing.

I’m not myself innocent of typos. Kim’s and Gee’s study is a striking reminder that every keystroke counts — and of why we all need to proofread, proofread, put our writing aside for a bit and then proofread again. Someone out there is waiting for us (for you) to make a typing error that could be far more fatal than you think.

 

Related Care2 Coverage

The Religion of Apple

Global Cyberattack By an Asian Nation Uncovered

Study Says Internet Use Affects Our Memory

Read more: , , , , , , , , , , , , , , , ,

Photo by SidewaysSarah

have you shared this story yet?

some of the best people we know are doing it

17 comments

+ add your own
9:04PM PDT on Sep 13, 2011

the whole thing is bloody annoying. i mean, why do I need a filter to skim off all the garbage that spammers bombard the net with? i'd love to be able to set up a filter of my own: one that bounces back all spam and multiplies itself like a melissa virus before it hits the originators mailbox!

8:54PM PDT on Sep 13, 2011

thanks 4 imfo

2:50PM PDT on Sep 13, 2011

_Very interesting thank you. Noted.

12:53PM PDT on Sep 13, 2011

Nothing is foolproof...fools are too ingenious.

11:48AM PDT on Sep 13, 2011

Scarey!

10:57AM PDT on Sep 13, 2011

Let's blame Al Gore he invented it....LOL

10:00AM PDT on Sep 13, 2011

Thanks for this info.

Another reason to fight back when businesses try to force you to pay bills, manage accounts, etc. online vs. traditional mail and secure phone lines. The risks are too high, in my book.

9:54AM PDT on Sep 13, 2011

It's getting more and more likely I'll not be using this machine much longer. It's so expensive, first of all, but when it allows invasive inroads to a persons privacy, it's something I can live without.

7:09AM PDT on Sep 13, 2011

Proofreaders used to be an integral part of the job force when dealing with advertising, etc. Of course that assumes one has been educated properly in the art of spelling, definition, and sentence structure ... questionable at best in our current fast-tracking society. QUALITY ASSURANCE IS DEAD AS A DOORKNOB. Sad.

6:52AM PDT on Sep 13, 2011

Companies need to hire really good computer programmers (and pay them decently!).
There's got to be something to help.
Typos will *always* happen, so there's a need for some safety net.

Thanks for the post.

add your comment



Disclaimer: The views expressed above are solely those of the author and may not reflect those of
Care2, Inc., its employees or advertisers.

Care2 - Be Extraordinary - Start a Care2 Petition
ads keep care2 free
CONTACT THE EDITORS

Recent Comments from Causes

excellent post......one example stands out in my mind when it comes to the white mans war on those who…

meet our writers

Kristina Chew Kristina Chew teaches and writes about ancient Greek and Latin and is Online Advocacy and Marketing... more
ads keep care2 free



Select names from your address book   |   Help
   

We hate spam. We do not sell or share the email addresses you provide.