6

Chrome has a fairly new "lookalike URL" or "typo squatting" detection feature. The aim is to warn users if they are accidentally going to the wrong URL.

We own two sites (made up version below):

  1. ourcompanyinc.example
  2. ourcompany-inc.example

For whatever reason, the URL without the hyphen is our main web URL, and the URL with the hyphen is used for some other things.

Unfortunately when users go to the non-hyphen version, they are warned that it may be a malicious site, and they should go to the one with the hyphen. We own both of them. Does anyone know how we can let Chrome know that they are not lookalikes, so we can avoid this warning? The warning verbiage is below:

Did you mean ourcompany-inc.example?

Attackers sometimes mimic sites by making hard-to-see changes to the web address.

Stephen Ostermiller
  • 99,822
  • 18
  • 143
  • 364
BRass
  • 161
  • 3

1 Answers1

-2

Chrome is mistakenly flagging your domain without a hyphen as deceptive, despite your ownership and use of both versions. This issue can potentially harm your website's reputation and user trust. To address this problem, you should:

Contact Google Safe Browsing: Reach out to Google Safe Browsing to report the false positive and request a review of your domain.

Check Domain Configuration: Ensure your domain's DNS and SSL configurations are correctly set up for both versions (with and without a hyphen).

Implement Security Measures: Enhance your website's security measures, including regular malware scans and ensuring your site doesn't contain any malicious content.

Monitor for Updates: Keep an eye on Chrome updates, as false positives can sometimes be resolved through browser updates.

By taking these steps, you can work to resolve the issue and prevent further mislabeling of your website by Chrome.

Ehsaan Ansari
  • 1