37signals

View Original

New in HEY: Homographic phishing protection

HEY now offers protection against homographic phishing attacks. These attacks use characters from different alphabets in the email address to appear legitimate to the human eye. For example, the addresses "jacopo@tᴡitter.com" and "jacopo@twitter.com" look the same. However, the first uses the Cyrillic character for "ᴡ" and the second uses the Latin "w".

When we detect you have received a mail that uses this mix of characters in the from address, HEY will make it obvious by displaying it using Punycode.

A banner will also be shown to highlight that the message may be dangerous.

Thanks again for using HEY!

–The HEY Team