Security News > 2022 > September > Gay hookup site typosquatted by 50 domains to push dodgy Chrome extensions
Gay hookup and cruising web app Sniffies is being impersonated by opportunistic threat actors hoping to target the website's users with typosquatting domains that push scams and dubious Google Chrome extensions.
In some cases, these illicit domains launch the Apple Music app prompting users to buy a subscription, which in turn would earn threat actors a commission.
Ethical hacker and security researcher Kody Kinzie shared with BleepingComputer a list of over 50 domains many of which are spelling variations of the brand name Sniffies.
BleepingComputer observed the domain virginatlantc.com, which patrons of Virgin Atlantic may accidentally type, exhibits much of the same behavior as phishing domains identified in this campaign.
The number of domains targeting Sniffies.com users is rather large.
"I saw a good amount of domains registered with the same MX server set up, even though the domains were hosted on random platforms."