1. 首页
  2. 部门
  3. 电脑服务中心
  4. 了解网络钓鱼指南

了解网络钓鱼指南

Image showing fish trying not to get hooked with text about not getting hooked,

什么是网络钓鱼?

网络钓鱼 is the attempt to acquire sensitive information such as usernames, passwords, and credit card detail by masquerading as a trustworthy entity in an electronic communication.

  • 网络钓鱼 emails may contain links to websites that are infected with malware
  • 网络钓鱼 can come in more than one form: email, instant messages, pop-up, online postings, 和电话
  • 网络钓鱼 requires YOUR HELP in order to succeed

If you have any suspicion or uncertainty, 不要点击回应.  刚刚接触 the sender of the email through your normal mode of communication.  这总是 你最好的保护.  就是这么简单.  你有责任保护你的 个人信息.  

为什么网络钓鱼很流行?

网络钓鱼 remains a major security threat to businesses and their customers around 世界和威胁不断上升.  据估计,企业将损失2美元.1 to 3 billion from phishing related losses yearly.  你会问,为什么它这么受欢迎?  因为:

  • 这是一项利润丰厚的非法生意  
  • 网络钓鱼 attacks are relatively easy to create and distribute, and
  • 网络钓鱼经常奏效(对罪犯来说) 

如何识别网络钓鱼

Below are a few common characteristics often found in phishing messages:

索取个人资料 - The telltale sign of a phishing message is the request for 个人信息, e.g. password, date of birth, address, name, account information… Legitimate institutions should never ask for 您的个人信息 via email.

紧急/威胁的语言 - Many phishing emails convey treating language such as Your access will be revoked 如果你没有... or Your account will be terminated 如果你没有... 是常用的 调用即时响应.

有问题的网址

  • The URL should match what you are expecting from the sender
  • The displayed URL should mirror the actual link -- On a non-touch device, hover over the link with your mouse and compare the URL link.
  • 合法的URL应该是安全的. Never log into a website that's not secure -- look 为http:// 

可怜的语法和拼写错误 - The largest propagators of phishing attacks are from countries where English is 不是他们的第一语言. Use this to your advantage by spotting poor grammar and misspellings as a red flag, but beware: some phishing emails have perfect grammar.

与你无关的话题 - For example, if you don't bank at 地区, don't fall for a phishing message "from" 地区. If you have not recently ordered anything that would be shipped by FedEx, 不要相信联邦快递的信息.

良好的实践-常识

Often, common sense goes a long way in protecting you and your data from phishing. 以下是一些通用规则:

  1. Don’t trust email that comes out of the blue or you are not expecting which requires you to reveal a password or other personal identifying information
  2. Don’t trust an unexpected email on its own authority – even if it LOOKS legitimate. If the email contains a link that takes you to a site asking for any password or other 个人信息, 不要点击回应. 
  3. Remember, legitimate institutions should never ask for 您的个人信息 via 电子邮件或链接到另一个网站.  Instead, they will instruct you to use your normal 查阅你个人资料的方法.   要小心那些没有跟进的邮件 这种做法. 

保护自己免受网络钓鱼

网络钓鱼 is an act of masquerading as a legitimate business or entity to commandeer 您的个人信息 for someone else’s gain.  保护是你的责任 您的个人信息.  不要点击回应.  只要联系发件人 the email through your normal mode of communication.  这永远是你最好的保护.  就是这么简单. 

If you receive a suspicious email, please contact the Computer Center at suspiciousemail@xiaoren19.com or (251) 460-6161.