Typosquatting & Brand Protection

Defending Your Brand Against Domain Abuse

Typosquatting is the practice of registering domain names that are common misspellings or variations of popular brands. These domains are used for phishing, advertising revenue, or selling counterfeit goods.

Common Typosquatting Techniques

  • Keyboard-adjacent typos: goofle.com (f is next to g)
  • Missing letters: gogle.com
  • Doubled letters: googgle.com
  • Transposed letters: googel.com
  • Wrong TLD: google.cm instead of google.com
  • Hyphenation: face-book.com
  • Plural/singular: googles.com
  • Homoglyphs: Using similar-looking characters from different scripts

How Typosquatters Profit

  • Pay-per-click advertising: Displaying ads on typo domains to earn ad revenue
  • Affiliate fraud: Redirecting users through affiliate links
  • Phishing: Collecting login credentials on fake login pages
  • Malware distribution: Serving drive-by downloads
  • Domain resale: Selling the domain back to the brand owner at inflated prices
  • Competitor redirect: Sending traffic to a competing website

Brand Protection Strategies

Defensive Registration

  • Register common misspellings of your brand domain
  • Secure your brand across major TLDs (.com, .net, .org, .io, etc.)
  • Register country-code TLDs for markets you operate in
  • Consider new gTLDs relevant to your industry

Monitoring

  • Use brand monitoring services to detect new registrations of similar domains
  • Monitor Certificate Transparency logs for certificates issued to lookalike domains
  • Set up Google Alerts for your brand variations
  • Regularly check WHOIS for domains similar to yours

Legal Remedies

  • UDRP (Uniform Domain-Name Dispute-Resolution Policy): ICANN process for recovering domains registered in bad faith
  • URS (Uniform Rapid Suspension): Faster, cheaper alternative to UDRP for clear-cut cases
  • ACPA (Anticybersquatting Consumer Protection Act): US law allowing trademark holders to sue
  • Cease and Desist: Often effective for less determined squatters

Technical Protections

  • DMARC enforcement: Prevents email spoofing from typosquatted domains
  • Browser protections: Modern browsers warn about known phishing domains
  • DNS filtering: Enterprise DNS solutions can block known typosquatting domains

Assessing the Threat

Use WHOIS data to evaluate typosquatting domains:

  • Check registration date — recently registered domains are more suspicious
  • Look at the registrant — different from your organization is a red flag
  • Check nameservers — pointing to parking or ad services indicates squatting
  • Review DNS records — check where the domain actually resolves to
Take Action: Use our WHOIS lookup to investigate suspicious domains, and our Related Domains tool to discover domains similar to yours that may need attention.
← Previous: Phishing & Domain Spoofing Next: How Domain Valuation Works →