More details have emerged regarding the security risks one creates from sloppy typing.In this case, missing dots from email addresses can apparently open the victim up to a 20GB data leak.Independent Web consultant Mark Stockley writes about the problem in the Sophos Naked Security blog: Security researchers have captured 120,000 emails intended for Fortune 500 companies by exploiting a basic typo. The emails included trade secrets, business invoices, personal information about employees, network diagrams and passwords.Researchers Peter Kim and Garrett Gee did this by buying 30 internet domains they thought people would send emails to by accident (a practice known as typosquatting). The domain names they chose were all identical to subdomains used by Fortune 500 companies save for a missing dot.Having purchased the domains they simply sat back and watched as users mistakenly sent them over 120,000 emails in six months.This is another variation of the typosquatting I wrote about Friday. In that post, the folks at M86 Security Labs described an attack where the bad guys take advantage of people who end up typing in an incorrect domain name.In that example, botched Youtube searches were the catalyst.The simple lesson here is to be careful when typing, whether it’s an email or Web search. –Bill Brennerone-stop view of latest business threats. We created it for you! Bookmark it! Use it! CSO’s Daily Dashboard gives you a Related content news Gwinnett Medical Center investigating possible data breach After being contacted by Salted Hash, Gwinnett Medical Center has confirmed they're investigating a security incident By Steve Ragan Oct 02, 2018 6 mins Regulation Data Breach Hacking news Facebook: 30 million accounts impacted by security flaw (updated) In a blog post, Facebook’s VP of product management Guy Rosen said the attackers exploited a flaw in the website's 'View As' function By Steve Ragan Sep 28, 2018 4 mins Data Breach Security news Scammers pose as CNN's Wolf Blitzer, target security professionals Did they really think this would work? By Steve Ragan Sep 04, 2018 2 mins Phishing Social Engineering Security news Congress pushes MITRE to fix CVE program, suggests regular reviews and stable funding After a year of investigation into the Common Vulnerabilities and Exposures (CVE) program, the Energy and Commerce Committee has some suggestions as to how it can be improved By Steve Ragan Aug 27, 2018 3 mins Vulnerabilities Security Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe