@ariadne Ha, easy! You simply have to compare the angle... | hanser

All posts Ariadne Conill 🐰's posts Post Back to profile

Ha, easy! You simply have to compare the angle of the slashes to the ones after https: obviously in the first link the angle is too flat which indicates that it is a special character and no slash. So this is the link more likely containing the malware. As I said: Really obvious!

... we'll be fine.

Like 16 May 2023 at 19:52 | Wall-to-wall | Open on HoFra.rocks

3 comments

Wolf480pl

@hanser @ariadne
or you just mouseover the URL and look at the tooltip inthe bottom left corner....

16 May 2023 at 20:17 | Open on mstdn.io

Thomas Guyot-Sionnest

@hanser @ariadne It was easy to spot side-by-side, but what about coming across an unsuspected url? Would you have noticed it on the spot?

Some Unicode characters are even harder to distinguish than these fake slashes.

17 May 2023 at 5:44 | Open on noc.social

hanser

@dermoth @ariadne

sry, I forgot the <sarcasm></sarcasm>-tags :)

Even though I think that the Unicode-slash-attack vector existed already before, without the .zip TLD.

17 May 2023 at 7:03 | Open on HoFra.rocks