Be Wary of Misspelled Websites like “Netflix.om”

It is not uncommon for us to make mistakes while typing the name of a website. Fortunately, a DNS error comes up if there is an error in the web address of your desired site, especially if the error is in the domain. However, it didn’t happen when a user unknowingly and unintentionally forgot the ‘c’ in ‘netflix.com’ making it “netflix.om”.

The DNS resolved successfully, despite the typo, leaving the user clueless about what transpired, as he or she was unaware about the mistake made. Oblivious to anything fishy, the user continued on, only to download a ransonware on his or her device. This new trick by hackers was brought into the spotlight by Endgame. To sum up this clever manipulation, OM is actually internet lingo for Oman and .om domains are mainly used by Oman’s local websites. However, hackers are using it for tricking common netizens.

What happens when user enters into ‘Netflix.om’?

In order to trick users into downloading malware or ransomware, it is necessary for hackers to make users download something on their PCs or devices. Similarly, when a user enters this shady website, he or she is automatically redirected to a page, where a popup message to update their flash player welcomes them. It is a very smart move by hackers, since users will actually believe that a new version of flash player has been released and they need to update theirs.

Upon clicking the prompted link, a file starts to download and automatically installs itself. However, it is certainly not an update to the flash player. According to Kaspersky Lab, that fake “Flash Updater” download actually carries Genieo, a payload, most of the times. This payload automatically installs an extension to your internet browsers to trigger different pop-ups and other annoying entities.

However, it can also contain a malware or ransomware that can steal your data or lock it down, until you pay a ransom fee to access your own data or files on the affected system. So, it is definitely malicious and a grave threat for users.

How users can avoid being victims?

There are several ways to identify if the website you entered is valid or not. Almost everyone knows how Netflix actually looks like. So, if you mistakenly enter Netflix.om and the site redirects you to a page where it prompts you to download flash player or any other file, then never click on the message or download any file. Check the web address first and you will see a suspicious link in your browser’s address bar.

Netflix.om is not the only domain that is bought and run by hackers. So, even if the site resembles the actual site or any other sketchy webpage, do not click on any link or download anything. Check the web address again, and you will easily identify that it is a trap.

Some other .om sites that seem sketchy

There are a few more .om websites that were found to be sketchy. There might be more, but the ones we found so far are:

abercrombie.om

adidas.om

adobe.om

alibaba.om

aliexpress.om

aliexpressc.om

aljazeera.om

amazon.om

amazonc.om

americanexpress.om

ancestry.om

aol.om

aolc.om

ask.om

att.om

autotrader.om

autozone.om

avg.om

badoo.om

baidu.om

baiduc.om

bankofamerica.om

barnesandnoble.om

bestbuy.om

bestbuyc.om

bet365.om

bet365c.om

betfair.om

bing.om

blogfa.om

blogger.om

blogspot.om

bol.om

bookingc.om

capitalone.om

cbs.om

chasec.om

cheapoair.om

citi.om

citibank.om

citibankc.om

cnet.om

cnn.om

cnnc.om

costco.om

creditkarma.om

ctrip.om

cvs.om

dailymotion.om

dell.om

delta.om

deviantart.om

digg.om

directv.om

discovercard.om

dropbox.om

drugstore.om

dubizzle.om

eastbay.om

eastmoney.om

ebates.om

ebayc.om

enterprise.om

etao.om

etrade.om

etsy.om

evite.om

expediac.om

facebookc.om

fedex.om

fiverr.om

flickr.om

flipkart.om

fox.om

foxnews.om

freelancer.om

ft.om

gamestop.om

github.om

gizmodo.om

gmail.om

gnc.om

go.om

godaddy.om

googlec.om

groupon.om

hi5.om

hilton.om

homedepot.om

hotelsc.om

hp.om

hsn.om

htc.om

huffingtonpost.om

hulu.om

ikea.om

imdb.om

imgur.om

indeed.om

instagram.om

instagramc.om

intuit.om

istockphoto.om

jcpenney.om

jcrew.om

jet.om

kaspersky.om

kayak.om

kayakc.om

kmart.om

kohls.om

lenovo.om

linkedin.om

linkedinc.om

live.om

livejournal.om

livescore.om

lowes.om

lufthansa.om

macys.om

mapquest.om

meituan.om

mlb.om

monster.om

monsterc.om

msnc.om

mtv.om

nascar.om

nba.om

nbc.om

netflix.om

newegg.om

nfl.om

nhl.om

nike.om

nordstrom.om

norton.om

office365.om

officedepot.om

okcupid.om

one.om

opentable.om

oracle.om

orbitz.om

outlook.om

outlookc.om

overstock.om

pandora.om

paypal.om

paypalc.om

photobucket.om

pinterest.om

pogo.om

priceline.om

progressive.om

qq.om

qqc.om

qunar.om

qvc.om

qz.om

realtor.om

realtorc.om

reddit.om

rediff.om

rei.om

renren.om

rr.om

samsclub.om

samsung.om

scottrade.om

sears.om

shutterfly.om

si.om

skype.om

snapdeal.om

sogou.om

sohu.om

sony.om

soundcloud.om

southwest.om

sportsdirect.om

spotify.om

sprint.om

staplesc.om

starbucks.om

statefarm.om

steampowered.om

stubhub.om

suning.om

suntrust.om

t-mobile.om

taobao.om

taobaoc.om

targetc.om

tdcanadatrust.om

tesco.om

ticketmaster.om

tigerdirect.om

tmall.om

tmallc.om

tmz.om

toysrus.om

travelocity.om

trulia.om

tudou.om

tumblr.om

tuniu.om

united.om

ups.om

urbanoutfitters.om

usaa.om

usaac.om

usbankc.om

usps.om

vanguard.om

verizon.om

verizonwireless.om

vimeo.om

vip.om

vistaprint.om

vk.om

vkc.om

vrbo.om

vueling.om

walgreens.om

walmart.om

walmartc.om

wayfair.om

weatherc.om

webmd.om

weibo.om

weiboc.om

wellsfargo.om

wellsfargoc.om

wetter.om

whatsapp.om

williamhill.om

woot.om

wordpress.om

wordpressc.om

wsj.om

wwe.om

xbox.om

xe.om

y8.om

yahoo.om

yahooc.om

yandex.om

yatra.om

yellowpages.om

yelp.om

yhd.om

youku.om

youtube.om

youtubec.om

zappos.om

zapposc.om

zara.om

zillow.om

zulily.om

So, we recommend that you stay away from all these sites, and if you accidently open any of these, do not download any file at all. Stay safe & start watching the best tv shows & movies on Netflix now!

Furqan Tafseer is a tech-enthusiast who keeps an eye on cyber-security and online privacy related issues around the globe. Apart from this, he passionately watches and occasionally writes about sports, especially NBA. He also loves to spend time with his family and enjoy music, when he is not working!

Have Your Say!!

1 Comment
  1. mulberry says:

    You are a very smart individual!

Join 3 million+ users to embrace internet freedom

Signup for PureVPN to get complete online security and privacy with a hidden IP address and encrypted internet traffic.

Shares