As we get closer to the election, it’s highly likely that malicious actors will register and leverage election and voting websites to mislead users. We identified 47 potentially malicious domains that were either parked, redirected to a different website, or were illegitimate or misconfigured. For example, register2vote2020[.]com and register2vote2020[.]net, are not currently hosting content; however, the potential for these sites to gather sensitive voter details is something to consider, especially as we’re approaching the cutoff for 2020 voter registration. 

Another site, real2020poll[.]com, does not appear to be malicious in nature, but I think it’s safe to say that it’s probably not operated by a legitimate United States polling organization. 

In times where disinformation, manipulation, and shady websites are at an all-time high, users must remain vigilant. Are you sure that the website you’re visiting is legitimate? Do you really need to download that Chrome extension? Are your sensitive details being submitted to a legitimate database? These are all things to seriously consider while surfing the web. 

To keep yourself safe, we recommend that you corroborate the website’s legitimacy by looking at the candidate’s social media networks. Typically, candidates will share their official domains in their biography sections or highlighted within their feed―if you’re looking to donate to one of the campaigns, try looking there first for information. We don’t recommend visiting linked websites sent via unsolicited emails, as this is a common tactic of threat actors employing phishing pages.

From an organizational point of view, here are our recommendations on avoiding possible brand impersonation or damage:

  1. Buy Domains Similar To Yours. For practitioners, if we look at typosquats in a timeline, one of the initial things you can do is buy domains that appear to be similar to yours. Obvious options would be domains that are one or two letters off from your legitimate domains. Using a tool like DNSTwister, you can generate a list of currently active domains that could already be impersonating your brand or give ideas for where to start purchasing domains.
  2. Monitor Domain Registration Activity. You should also start monitoring registration activity. This is hard enough for one domain, but if you have several it may be a bit unmanageable. At that stage we would suggest getting help; part of our core service at Digital Shadows is monitoring for domain impersonations and providing a variety of alerts: when a new typosquatted domain is available to register, when someone has added an MX record that is required to send emails (read: PHISHING emails), when a domain is actively hosting impersonating content, and more.

To learn more about typosquat and phishing protection, check out the Phishing Protection resources center page.

RESEARCHED DOMAINS

DomainBehavior
joe-biden.comMisconfigured or illegitimate
joe-biden.comNon-malicious
joe-biden2020.netNon-malicious
bw2020.orgNon-malicious
joe46biden.comNon-malicious
joe-biden-kamala-harris.comNon-malicious
joe-biden46.comNon-malicious
joe-biden-for-president.comNon-malicious
barack-obama-and-joe-biden.comNon-malicious
bidenwarren2020ticket.comNon-malicious
imjoebiden.comNon-malicious
biden-klobuchar-2020.comMisconfigured or illegitimate
biden2020faceshield.comNon-malicious
biden2020.comNon-malicious
biden2020usa.comNon-malicious
biden2020s.comNon-malicious
joe-biden2020.netNon-malicious
biden2020coin.comMisconfigured or illegitimate
biden-obama-2020.comNon-malicious
biden-sanders2020.comNon-malicious
harris-biden2020.comNon-malicious
biden-potus2020.comMisconfigured or illegitimate
biden2020ppe.comRedirect
biden4prez2020.comNon-malicious
biden2020signs.comNon-malicious
biden-winfrey2020.comNon-malicious
biden2020flags.comNon-malicious
biden2020shirts.comNon-malicious
2020biden.comMisconfigured or illegitimate
biden2020win.comNon-malicious
biden2020shirt.comMisconfigured or illegitimate
joseph-biden2020.comNon-malicious
biden-harris2020.netNon-malicious
Nextgendems4biden.comMisconfigured or illegitimate
biden-orourke2020.comNon-malicious
biden2020shirts.netMisconfigured or illegitimate
biden-buttigieg-2020.comNon-malicious
biden2020masks.comNon-malicious
trump-biden2020.comNon-malicious
biden-warren2020.comNon-malicious
bw2020.orgNon-malicious
innovators4biden2020.comMisconfigured or illegitimate
dogs4biden.comNon-malicious
outforbiden.orgNon-malicious
biden4freedom.comRedirect
sayno2biden.comNon-malicious
biden4muslims.comNon-malicious
smes4biden.comNon-malicious
independententrepreneurs4biden.comNon-malicious
entrepreneurs4biden.comNon-malicious
nextgendems4biden.comMisconfigured or illegitimate
joe-biden-kamala-harris.comNon-malicious
kamala-harris2020.comMisconfigured or illegitimate
kamala-harris2020.netMisconfigured or illegitimate
BIDEN2020ONLINESTORE.COMNon-malicious
biden-harrismerchandise.comNon-malicious
biden.exposedRedirect
biden-harris-election.comNon-malicious
biden.sexyRedirect
biden.icuRedirect
biden.monsterNon-malicious
kamala.clubNon-malicious
joe-and-kamala.comNon-malicious
kammalaharris.comNon-malicious
mamalaharris.comMisconfigured or illegitimate
kamalaaharris.comNon-malicious
kamallaharris.comNon-malicious
kamalharris.comNon-malicious
kampalaharris.comNon-malicious
kamulaharris.comRedirect
kamelaharris.comRedirect
kamalaharriss.comRedirect
kamalaharis.comNon-malicious
kamala-harris.comRedirect
kamlaharris.comNon-malicious
joe-hiden.comNon-malicious
joe-bidden.comMisconfigured or illegitimate
joe-bidens.comNon-malicious
biden-harris-team.comRedirect
harris-biden.netNon-malicious
biden-harris-20.comNon-malicious
biden-harris-ticket.comNon-malicious
joe-biden2020.comNon-malicious
biden-brindisi2020.comNon-malicious
biden-harris-2024.netMisconfigured or illegitimate
biden-harris2024.comNon-malicious
biden-harris-2020.netMisconfigured or illegitimate
2020biden-harris.comRedirect
biden-harris.comNon-malicious
joe-and-kamala.comNon-malicious
joe-kamala.netNon-malicious
bidenharrislive.comRedirect
vicepresidentkamalaharrislive.comRedirect
presidentjoebidenlive.comRedirect
vicepresidentharrislive.comRedirect
vicepresidentkamalaharris.liveRedirect
presidentjoebiden.liveRedirect
vicepresidentharris.liveRedirect
biden2020clothes.comMisconfigured or illegitimate
biden.designNon-malicious
biden.holdingsNon-malicious
biden.galleryNon-malicious
biden.llcNon-malicious
biden.miamiNon-malicious
biden.ninjaNon-malicious
biden.campNon-malicious
biden.schoolNon-malicious
biden.cyouNon-malicious
vets4biden.comNon-malicious
biden-harrisbus.comNon-malicious
biden.tubeNon-malicious
ok-biden.comNon-malicious
nursesforbiden.orgMisconfigured or illegitimate
elect-biden2020.comRedirect
kamala-biden2020.comRedirect
vote4harris.comNon-malicious
harris2024.voteNon-malicious
bidenharristicket2020election.comNon-malicious
byedon2020.voteNon-malicious
byedon.voteNon-malicious
the-donald-trump.comNon-malicious
beardsfortrump.usMisconfigured or illegitimate
trump-gop-retreat-got-real-donald-trump.comMisconfigured or illegitimate
therealdonaldrtump.infoMisconfigured or illegitimate
donald-trump.websiteNon-malicious
president-donald-trump.siteMisconfigured or illegitimate
president-donald-trump.website Misconfigured or illegitimate
donald-j-trump.loveMisconfigured or illegitimate
donald-trump-wtf.siteMisconfigured or illegitimate
donald-j-trump.comNon-malicious
trump-donald.comRedirect
donald-trump45.comNon-malicious
donald666trump.comNon-malicious
donaldjoketrump.usNon-malicious
magasec.usMisconfigured or illegitimate
donaldtrumpjr.netNon-malicious
donald-trump-tweets.blogMisconfigured or illegitimate
donald-trump-us-president.infoMisconfigured or illegitimate
donald-j-trump-presidential-library.net
Non-malicious
trump-tight.onlineNon-malicious
trump.consultingNon-malicious
trump2020trainwhistle.comNon-malicious
trump2020thegobconvention.comMisconfigured or illegitimate
trump-is-bad-for-us.comRedirect
trump4thepeople.comNon-malicious
latam4trumpRedirect
serbs4trump.comNon-malicious
don-trump2020.comMisconfigured or illegitimate
trump2020promos.comNon-malicious
reelect-trump-pence.comNon-malicious
trump-ees.comNon-malicious
alt-trump.comNon-malicious
trump-pence-maga.comNon-malicious
trump2020fanclub.comNon-malicious
trump.associatesNon-malicious
ceosagainsttrump.comRedirect
trumpaccountability.orgNon-malicious
trump-19virus.comNon-malicious
trump-keep-america-great-2020.comNon-malicious
cowboys4trump.comMisconfigured or illegitimate
trump4u2020shop.comMisconfigured or illegitimate
trump2020payperview.comNon-malicious
trump.howMisconfigured or illegitimate
trump20hat.comNon-malicious
trump.footballNon-malicious
trump2020co.comNon-malicious
trump–2020.comNon-malicious
trump2020supportmerch.comNon-malicious
trump-right.comNon-malicious
yo-trump.comNon-malicious
trump.bargainsNon-malicious
trump2020merch.netNon-malicious
trump-stuff.comNon-malicious
putin-pence.comNon-malicious
pence.cmNon-malicious
trumpforgetsvets.orgMisconfigured or illegitimate
maga-election.comNon-malicious
potus.reviewMisconfigured or illegitimate
america2020election.comNon-malicious
america-2020-election.comNon-malicious
electionsecurity.usRedirect
webex.voteNon-malicious
oakland.voteNon-malicious
progressivevote.usNon-malicious
progressive.voteNon-malicious
vote.centerNon-malicious
directionsto.voteNon-malicious
activate.voteNon-malicious
ballottracker.voteRedirect
nvregistration.voteRedirect
sendit.voteNon-malicious
vote4better.orgNon-malicious
vote4better.comNon-malicious
womenvoteflorida.voteNon-malicious
workthepolls.usNon-malicious
usps.voteNon-malicious
lets-go-vote.comMisconfigured or illegitimate
howcani.voteMisconfigured or illegitimate
weneedyou.voteMisconfigured or illegitimate
countmein2020.voteNon-malicious
electorate.voteNon-malicious
elector.voteNon-malicious
vote2saveamerica.comNon-malicious
moderateamerica.voteNon-malicious
vote.todayNon-malicious
texaswomen.voteNon-malicious
miami.voteRedirect
the2020.voteNon-malicious
unitedwe.voteNon-malicious
was-my-vote-counted.comMisconfigured or illegitimate
ellectoral-vote.comMisconfigured or illegitimate
vote1proud.comMisconfigured or illegitimate
postyour.voteMisconfigured or illegitimate
forum.voteMisconfigured or illegitimate
millennial-vote.comMisconfigured or illegitimate
real2020poll.comMisconfigured or illegitimate
nc-poll.comMisconfigured or illegitimate
24-7poll.comNon-malicious
register2vote2020.netNon-malicious
register2vote2020.comNon-malicious
web-election.comNon-malicious
election-vote.comNon-malicious
election2020masks.comNon-malicious
electionworkercorps.orgNon-malicious