Phishing w/TenFourFox

Hack5190

macrumors 6502a
Original poster
Oct 21, 2015
526
293
(UTC-05:00) Cuba
The way browsers display Punycode (support for foreign characters) has been a potential for abuse since it was implemented. However as Phishing attacks increase, the use of Punycode as a way to fool users has surfaced.

Punycode allows someone to register domain with foreign characters that will be displayed using only ASCII characters. For example, this page



is actually



(check out the demo web page)

The workaround is to make FireFox & TenFoxFour display Punycode instead of using only ASCII characters. Here are the needed steps to make the change:

  1. Type about:config in address bar and press enter.
  2. Type Punycode in the search bar.
  3. Browser settings will show parameter titled: network.IDN_show_punycode, double-click or right-click and select Toggle to change the value from false to True.
 

eyoungren

macrumors Core
Aug 31, 2011
21,180
13,021
ten-zero-eleven-zero-zero by zero-two
The way browsers display Punycode (support for foreign characters) has been a potential for abuse since it was implemented. However as Phishing attacks increase, the use of Punycode as a way to fool users has surfaced.

Punycode allows someone to register domain with foreign characters that will be displayed using only ASCII characters. For example, this page



is actually



(check out the demo web page)

The workaround is to make FireFox & TenFoxFour display Punycode instead of using only ASCII characters. Here are the needed steps to make the change:

  1. Type about:config in address bar and press enter.
  2. Type Punycode in the search bar.
  3. Browser settings will show parameter titled: network.IDN_show_punycode, double-click or right-click and select Toggle to change the value from false to True.
Thank you Hack! I've made this change!