How is called this behavior sending fake company emails?

[ICPH]

Hello,

if some thief setup domain name that seems similar to some company domain and place this javascript to the fake domains website:

<SCRIPT> window.location="https://www.companydomain.com/"; </SCRIPT>is it called web forgery or different way?

How is called that behavior of pretending to be some company employee, sending fake emails having fake domain? is there any term for it?

It is not phishing in this case i assume, any other terms before * forgery?

 

[HBAndrei]

So, that javascript will only direct visitors to the real company website? seems harmless.

Why would you call this person a thief, what are they trying to obtain from you? and how? Because depending on that you can get the correct term to associate with them.

 

[ICPH]

because of his email, read my initial post again please. im not asking just about website but about whole behavior (pretending to be someone, insisting to pay for example fictive invoices which then results in people money stolen because they send it to the thief) i described in my initial post

 

[HN-Matt]

I doubt it would be conceived of as 'forgery' by any professional organization unless the company's 'Mark' associated with the 'original' domain is trademarked. Then you could sick the trademark lawyers on them with accusations like 'typo squatting' or whatever.

pretending to be someone, insisting to pay for example fictive invoices which then results in people money stolen because they send it to the thief

Isn't that phishing?

 

[ICPH]

Isn't that phishing?

so the web forgery it isnt? regarding phishing, i dont think the person is trying to acquire any personal data? https://en.wikipedia.org/wiki/Phishing

 

[HN-Matt]

Phishing is the attempt to acquire sensitive information such as usernames, passwords, and credit card details (and sometimes, indirectly, money), often for malicious reasons, by masquerading as a trustworthy entity in an electronic communication.

Wikipedia's definition would seem to fit the bill.

If they've reached the point of sending fictitious invoices then they've already acquired all the 'personal data' they need...

 

[HN-Matt]

If it's only 'web forgery' or something approximating plagiarism with no discernable intent to extract money or passwords, you can always send the complainant on their merry way to https://en.wikipedia.org/wiki/Détournement or even http://naturalthinker.net/trl/texts/Anscombe,Elizabeth/firstperson.html.

 

[joepie91]

Spoofing.

 

[ICPH]

Spoofing.

thx, it appears to fit: https://en.wikipedia.org/wiki/Website_spoofing