Google offers a nifty quizz and tutorial on catching fraudulent URLs that are used in phishing schemes.
I find the last one difficult to understand, even after I skimmed the URL rfc written by Lee. The URL (with the scheme omitted) is
//google.com/amp/tinyurl.com/y7u8ewlr
Google says the TLD is tinuyurl.com and not google.com
I'd like to understand why. Obviously my current practice of identifying the TLD as the token to the left of the first single forward slash is wrong.
I find the last one difficult to understand, even after I skimmed the URL rfc written by Lee. The URL (with the scheme omitted) is
//google.com/amp/tinyurl.com/y7u8ewlr
Google says the TLD is tinuyurl.com and not google.com
I'd like to understand why. Obviously my current practice of identifying the TLD as the token to the left of the first single forward slash is wrong.