How to Spot a Phishing Scam如何识别诈骗
November 14th, 2007 · by David Bradley 2007年11月14日,大卫布拉德利
There are almost as many phishing scams as there are phish in the sea…don’t get caught out, if you’re caught hook, line, and sinker, you could lose a lot more than a few scales.有几乎同样多网路诈骗有诱骗在大海里…不要陷入指出,如果您被钩,线,片,您可能会丢失了很多超过数级。 Phishing scams involve stealing credit card details, identity theft, and worse (they might get your Digg password, for instance网路诈骗涉及窃取的信用卡详细资料,窃取身份,更糟的(他们可能让您的digg密码,例如 
The video below gives you the full skinny on how to spot a phishing scam.视频下面让您充分瘦就如何现货诈骗。 But the best piece of advice is to never click a link directly in an email, even if you trust the phishing protection in your email client and in your browser (Thunderbird email and Firefox browser have both).但最好的一句忠告是千万不要点击一个链接,直接发送电子邮件,即使您的信任诈骗保护在您的电子邮件客户端和在您的浏览器( Thunderbird电子邮件和Firefox浏览器都) 。 Instead select and cut the link and paste it into your address bar, that way you won’t click to any obfuscated URL hiding behind the seemingly legitimate link to Citibank, Paypal, or whatever.而不是选择和削减链接并粘贴到您的地址栏,这样你就不会点击任何模糊的URL躲在貌似合法的连接到花旗银行,贝宝,或什么。
10 responses so far ↓ 10的反应,到目前为止↓
David 国宝 // / / Nov 14, 2007 at 4:26 pm 2007年11月14日在下午4时26分
Good find - I just re-blogged this - I know a lot of people know about this stuff already, but the more people that put the word around, the safer people are良好的寻找-我只是重新日志这一点-我知道很多人都知道这东西已经,但更多人认为,把字左右,更安全的人
David国宝
Web Mash网站土豆
David Bradley 大卫布拉德利 // / / Nov 14, 2007 at 4:40 pm 2007年11月14日在下午4时40分
Indeed!确实!
pwnt // pwnt / / Nov 15, 2007 at 12:34 am 2007年11月15日在上午12时34分
Good stuff, I already knew about this but the typical person doesn’t.好东西,我已经知道,但典型的人不。
Also as a reminder most websites especially those that involve financial transactions use a SSL lock.此外,作为提醒大多数网站尤其是那些涉及金融交易使用的SSL锁。 The phishing site will most likely not have one.该钓鱼网站,将最有可能不会有一个。 But always look at the domain first, and then check for the SSL lock to reassure yourself.但总是看在域第一,然后检查的SSL锁来安抚自己。
David Bradley 大卫布拉德利 // / / Nov 15, 2007 at 8:17 am 2007年11月15日在上午8时17分
pwnt, it’s important to educate people about domain and IP spoofing too. pwnt ,它是非常重要的育人约域和IP欺骗。 Just because the address bar displays what looks like the bank’s address, doesn’t mean you’re actually visiting the site.只是因为地址栏显示什么看起来像银行的地址,这并不意味着您其实访问该网站。 It’s even possible for phishers of men (and women) to spoof the SSL lock.它甚至可以为钓鱼式攻击的男子(和妇女) ,以欺骗的SSL锁。
pwnt // pwnt / / Nov 15, 2007 at 9:34 pm 2007年11月15日在下午9点34分
True, what I said is a very basic and quick way to detect a phishing since, and as you said it’s not enough to truly to be safe that the site is legit.诚然,我说的是一个非常基本的和快速的方法来侦测仿冒以来,正如你所说,它没有足够的真正为了安全起见,该站点是合法的。
The most common one that looks like the real deal is the:最常见的一看起来像真正的处理是:
domain4phishing.com/targetsite.com/-insertgibberishhere-/ domain4phishing.com/targetsite.com/-insertgibberishhere- /
Taking a quick glance at that you might think it’s real, as for the SSL being spoofed, I believe FireFox tells you that it’s not authentic automatically right?以快速浏览,在你可能会认为它是真实的,至于在SSL被欺骗,我相信Firefox的告诉你,这不是真实的自动对不对? Or perhaps there’sa more advanced way to do it, that I’m not aware of, that would even trick FireFox into thinking the SSL session is legit.或也许有更先进的方式,这样做,我不知道,这将Firefox的伎俩,甚至到思想SSL会话是合法的。 Either way, the best way to avoid getting phished is to type in the URL yourself.无论哪种方式,最好的方法,以避免phished是类型,在自己的网址。
Hax0R // hax0r / / Dec 9, 2007 at 11:40 pm 2007年12月9日在下午11时40分
Dude Even If You Copy It It’s Still The Same dude即使你将它复制它的仍是相同的
R. r.
David Bradley 大卫布拉德利 // / / Dec 10, 2007 at 6:47 am 2007年12月10日在上午06时47分
HaxOR, you’re right, of course. haxor ,您的权利,当然。 What I was alluding to is the fact that clicking what looks like a legitimate link in an email does not necessarily deliver you to that address because the actual link beneath the text may be different.我是暗指是事实,即按什么看起来像是合法电子邮件中的链接,并不一定为您提供到该地址,因为实际的链接文本可能会有所不同。 You might click what looks like “http://www.safesitelink.com” but that text may actually link to “http://www.phishingsite.com” whereas if you type in “www.safesitelink.com” at least you know that that’s where your browser’s heading.您可能会按什么看起来像“ http://www.safesitelink.com ” ,但这一案文,实际上可能链接到“ http://www.phishingsite.com ” ,而如果您键入在“ www.safesitelink.com ”至少你知道这是那里您的浏览器的标题。 Of course, “www.safesitelink.com” may turn out to be dangerous too.当然, “ www.safesitelink.com ”可能成为被太危险。 You have been warned.您已被警告。
Joy Viloria // 喜悦viloria / / Apr 21, 2008 at 2:28 pm 2008年4月21日在下午2时28分
Madam/Sir:主席女士/先生:
I just wanted to know if this letter from the bank of Africa is a scam or not.我只想知道,如果这封信从银行,非洲是一个骗局,或没有。 Please help me.请帮助我。
Thanks.谢谢。
OUR REF BOF/SGN/GTC/022/016我们的档号bof/sgn/gtc/022/016
REV.DR.DOUGLAS GOLDMAN, rev.dr.douglas高盛,
BANK OF AFRICA,银行非洲,
17th OF APRIL 2008 2008年4月17日
ATTN: Mary Joy Viloria经办人:玛丽喜悦viloria
[The remainder of the letter which amounts to send me all your money and you can get very rich has been deleted, db] [其余的信数额寄给我所有的钱,你可以得到十分丰富,已被删除,分贝]
David Bradley 大卫布拉德利 // / / Apr 21, 2008 at 4:15 pm 2008年4月21日在下午4时15分
Joy, Joy, Joy!喜悦,欢乐的喜悦! Haven’t you been listening.没有你一直都在听取。 Of course it is?当然,这是什么? Do you really think some ex-government official’s wife’s cousin’s daughter’s goat is Nigeria is really going to send you millions of dollars for nothing?你真的认为一些前政府官员的妻子的堂弟的女儿的山羊是,尼日利亚是真的向您发送了数百万美元是什么呢? Send any of the requested details to one of these con artists and you will find you bank account empties within days and foreclosure notices placed on your property.发送任何所要求的细节之一,这些诈骗犯和你会发现你的银行帐户清空在数天内,并赎告示放置在您的财产。 “Rip it up” and get back to work or play. “食价,它起来” ,回到工作或发挥。
db分贝
Joy Viloria // 喜悦viloria / / Apr 21, 2008 at 4:56 pm 2008年4月21日在下午4时56分
thank you sir谢谢主席先生
Leave a Comment留下意见