Elon Musk’s X botched an attempt to replace “twitter.com” links with “x.com”

Jon Brodkin writing for Ars Technica

Security reporter Brian Krebs called the move “a gift to phishers” in an article yesterday. It was a phishing risk because scammers could register a domain name like “netflitwitter.com,” which would appear as “netflix.com” in posts on X, but clicking the link would take a user to netflitwitter.com.

This is something you’d expect from a high school computer science assignment, not a company that’s supposed to be worth $44 billion.