Watch Out for New Malware, Not Just Ads, on Mis-Typed URLs
The next time you accidentally type “.om” instead of “.com” in your browser, watch out for malware. The new scam targets typos in URLs and tries to install dangerous software on your computer.
Endgame detected malware after a user mistakenly entered Netflix.com:
He did not receive a DNS resolution error indicating that the domain he entered does not exist. Instead, the domain was successfully resolved due to the attacker registering “netflix.om”. His browser was redirected several times at once and ended up on the Flash Updater page with all the usual annoying (and intimidating for the untrained user) pop-ups with intimidating programs. Fortunately, Endgame recognized the danger and quickly retreated, avoiding damage.
They identified the download as “Adware Genieo,” which masquerades as a standard Adobe Flash update and then installs itself as an extension for Chrome, Firefox, or Safari. In the endgame, this is called typosquatting and is not limited to the Flash Updater page. Some pages will use polls, advertisements or intimidation techniques to trick you into downloading malware.
They have included a complete list of over 300 domains that seem suspicious here . For more details please follow the link below.
What do Oman, House of Cards, and Typosquatting have in common? .Om Domain and the Dangers of Typosquatting | Finale via Business Insider