---
type: "term"
title: "Domain Squatting"
description: "Registering domain names similar to legitimate ones (typosquatting, homograph attacks) to deceive users into visiting attacker controlled websites."
resource: "tlctc:term:domain-squatting"
tags:
  - "glossary"
---
# Domain Squatting

Registering domain names similar to legitimate ones (typosquatting, homograph attacks) to deceive users into visiting attacker-controlled websites. In TLCTC: the domain registration is infrastructure setup (not itself a cluster step). When used to harvest credentials via fake login pages, the attack maps to `#9 Social Engineering` (luring the user) → `#4 Identity Theft` (using the stolen credentials). When used to deliver malware, the sequence may be `#9 → #3` or `#9 → #7`.

**Reference:** V1.9.1 Buzz-Word Refinement (#4)

See also: Phishing, Social Engineering (#9), Typosquatting