Beware of ‘Google’ turning into ‘Foogle’: Police warn of rising typosquatting scams

Police have issued a warning about the growing menace of typosquatting, a cybercrime in which fraudsters create websites with misspelled addresses of well-known organisations to trick users into visiting scam sites.
Cybercriminals are targeting leading e-commerce platforms by setting up similar-looking sites offering branded products at lower prices. These fake websites are promoted through social media ads, as well as WhatsApp and and email links to lure unsuspecting users.
For example, Google.com may be imitated as Foogle, Hoogle, Boogle, Yougle, Toogle, or other minor variations. These hijacked sites are designed to look almost identical to the legitimate sites, including logos, layouts, and content. Even changing the domain extension, such as using .com instead of .org, can make the scam site appear genuine.
Fake sites primarily target online retailers, banking institutions, and other popular services. Users who log in and enter banking details or credit card information risk having their accounts compromised. Those who transfer money in the hope of buying cheaper goods also lose out. Police have warned that such information is frequently misused by cybercrime networks.
The dangers of visiting a typosquatted website can be manifold. Simply typing in the URL and pressing enter — without clicking any additional links — may result in malware being installed on your device.
Your personal information could also be stolen, including banking or credit card details, which could lead to financial fraud. Such data is often sold on the dark web, exposing your credentials to further criminal activity. You may end up paying for products that never arrive. Typosquatting also causes major headaches for the brands being impersonated, ranging from lost customers to damage to their reputation.
Safety tips to avoid falling victim
- Ensure that you are always clicking on the genuine link. Check for spelling errors and verify addresses against trusted sources such as bills or official correspondence.
- If you realise you have accessed a suspicious website, close your browser immediately and clear cookies.
- Use browsers with URL hijacking protection. Many browsers also offer anti-typosquatting extensions, which can provide an extra layer of protection.
- If it’s a site you have visited before, browser auto-complete can safely guide you. It’s also wise to bookmark important websites such as your bank, social media accounts, or utility portals to avoid mistakes.
- Install a reputable security suite and never click on a link you weren’t expecting in an email or other message, even if it appears legitimate.
- When in doubt, hover your cursor over the link to see the actual destination URL.
- Using a password manager can help, as it will only auto-fill credentials on verified, legitimate domains. Additionally, link checker tools are available to provide an extra layer of security.