木匠的微型博客 Charlie Twitter

    follow me on Twitter

    Monday, June 16, 2014

    phishing scam your google account 新型谷歌账号盗取伎俩

    最近出现了一种新型的企图盗取谷歌账号的欺诈手段, 比QQ和微信的各种手法更加隐蔽,更加恶毒. 大伙看仔细了.

    貌似华人所为, 出现了江苏徐州字样.

    我亲爱的华人同胞们呀,有这些聪明才智,怎么就不用到正道上呢? 为什么呢?

    好了, 请看这个小伎俩的详细介绍, 谨防上当受骗.


    1) 冒充 google 官方邮件发信, 告诉你有人企图登录你的邮箱. 骗取你的信任.

    no-reply , 或者类似别名.

    google给出了警告信息, 但是不够醒目:
    This message may not have been sent by: Account@gmail.com  Learn more  Report phishing

    2) 告诉你时间, IP 和 地点. 进一步骗取你的信任.

    Friday, June 13, 2014 2:30:44 PM UTC
    IP Address: 122.192.185.201
    Location: Xuzhou, Jiangsu, China

    3) 显示一个 google 风格的按钮,让你重设密码, 链接到骗子自己的网站.
    链接地址里面有 google 字样, 以假乱真.
    骗子的网站里面要求你输入用户名,密码,电话等等各种保密安全信息.

    [Reset password] , URL: http://mail.google.ormeco.com.ph/

    4) 落款还显示了google 公司地址等一堆真实的官方信息. 再进一步骗取你的信任.


    * 识破骗局 *
    我就奇怪了, 重设密码, 为啥还要再次输入用户名? google自己肯定知道我的用户名的邮件地址.

    =======

    欺诈邮件内容 屏幕截取 Snapshot :
    Hi,

    Someone recently tried to use an application to sign in to your Google Account.

    We prevented the sign-in attempt in case this was a hijacker trying to access your account. Please review the details of the sign-in attempt:

    Friday, June 13, 2014 2:30:44 PM UTC
    IP Address: 122.192.185.201
    Location: Xuzhou, Jiangsu, China


    If you do not recognize this sign-in attempt, someone else might be trying to access your account. You should sign in to your account and reset your password immediately.

    Reset password

    If this was you, and you are having trouble accessing your account, complete the troubleshooting steps listed at http://support.google.com/mail?p=client_login

    Sincerely,
    The Google Accounts team
    This email can't receive replies. For more information, visit the Google Accounts Help Center.
    You received this mandatory email service announcement to update you about important changes to your Google product or account.

    © 2014 Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA

    No comments: