Show HN: Someone registered ÿoutube.com, could be a scam?

4 pointsharish_yadav4y ago6 comments

So I found out someone registered ÿoutube.com which redirects to http://xn--outube-oza.com/

It is still a parked domain. My guess is that it could be a future honey pot.

6 comments

It could also easily be used for phishing or IP logging purposes. Poor attempt though, almost everyone is now aware of unicode in domain names, and anyone techie enough would be able to spot it.

sircastor4y ago

I don’t agree. I think almost every _technical_ user is aware of this practice, but I don’t think generally it’s understood.

That said, I think it’s mostly ineffective because later versions of chrome are pretty good about identifying these doppelgänger domains and warning people away from them.

harish_yadavOP4y ago

Yet, I feel not everyone is technically literate enough.

This could very be a risk. I was using Chrome when I found this out, I wasn't given any such warning.

It'd be good with chrome can offer some discouragement to these.

dsmmcken4y ago

I could see that easily being missed, it's not displayed as punycode in the firefox url bar.

fairytale4y ago

One can simply set network.IDN_show_punycode to true in their about:config

blcknight4y ago

That’s not a redirect btw, it’s the same domain. The xn—- prefix indicates Unicode encoding

j / k navigate · click thread line to collapse

6 comments

fairytale4y ago

It could also easily be used for phishing or IP logging purposes. Poor attempt though, almost everyone is now aware of unicode in domain names, and anyone techie enough would be able to spot it.

sircastor4y ago

I don’t agree. I think almost every _technical_ user is aware of this practice, but I don’t think generally it’s understood.

That said, I think it’s mostly ineffective because later versions of chrome are pretty good about identifying these doppelgänger domains and warning people away from them.

harish_yadavOP4y ago

Yet, I feel not everyone is technically literate enough.

This could very be a risk. I was using Chrome when I found this out, I wasn't given any such warning.

It'd be good with chrome can offer some discouragement to these.

dsmmcken4y ago

I could see that easily being missed, it's not displayed as punycode in the firefox url bar.

fairytale4y ago

One can simply set network.IDN_show_punycode to true in their about:config

blcknight4y ago

That’s not a redirect btw, it’s the same domain. The xn—- prefix indicates Unicode encoding

j / k navigate · click thread line to collapse