加拿大埃德蒙顿的一所学校梅斯万大学的工作人员收到了一封电子邮件从一个主要供应商中说,他们最近更改了电子银行信息,并将所需的付款发送到新帐户。
假设他们值得信赖的业务伙伴只是经历了一些变化,大学在10天内遵守并将3款付款转让给了新的银行帐户。
但四天后,这种情况得到了phone call from this same vendor asking them why they hadn't paid their fees yet. Perplexed by the call, the university told them they had just transferred the payments to their new bank account.
The vendor had no idea what they were talking about.
不幸的是,该银行帐户实际上并不属于Macewan的供应商。它属于加拿大和香港的网络罪犯。梅斯万大学刚刚将他们转移了1,180万美元。
最终,大学发现了该电子邮件,要求他们将付款转移到新的银行帐户实际上是欺诈性的,并且是一种流行的网络攻击形式,thousands of businessesfall victim to every year — phishing.
什么是网络钓鱼?
Phishing is the most common type of cyber attack. Criminals impersonate brands, banks, executives, and trusted business partners to manipulate people into downloading malware or ransomware, or visiting fake websites. Criminals then trick people into handing over confidential credentials.
Most cyber criminals deploy phishing attacks through email, like the picture below, but some have also started to exploit social media, messaging apps, and text message to steal people’s personal information.
近年来,网络钓鱼实例数量增加了 - 实际上,已经结束了仅2020年3月就报告了60,000个网络钓鱼网站. This cybercrime could wreak havoc on your brand and bottom line.So how do you defend your customers and employees from phishing without making them your brand’s first line of defense?
Here are three shields you can leverage to protect your brand from these prevalent attacks.
How to Protect Your Business From Phishing Attacks
1.构建DMARC记录。
DMARC(基于域的消息身份验证报告和符合性)是一种尖端的电子邮件身份验证协议,它利用其他两个身份验证协议,SPF(发送者策略框架)和DKIM(Domainkeys已确定的邮件)来验证从您的域和块中派发的合法消息欺诈性电子邮件出现to be sent from your domain.
这些电子邮件身份验证协议是相当技术的,因此,简而言之,SPF是IP地址的记录,该记录被授权代表您发送电子邮件服务提供商检查的电子邮件,而DKIM是一个利用密码身份验证的验证过程。
DMARC is the only technology that can ensure your "header from” address (what your users usually look at first when they see your emails) is trustworthy.
为此,他们只会对通过SPF身份验证和SPF对齐或DKIM身份验证和对齐方式进行身份验证电子邮件。如果电子邮件失败了SPF身份验证,对齐方式以及DKIM身份验证或对齐,则将失败DMARC。
DMARC还允许您告诉电子邮件服务提供商他们应该使用似乎从您的域发送的任何欺诈性邮件做什么。您可以监视所有电子邮件,将未经验证的消息移至用户的垃圾邮件文件夹,或者决定不将这种类型的邮件发送到服务器上的收件箱。
Additionally, email service providers will regularly send you forensic DMARC reports, showing you which emails are authenticating, which ones are not, and why.
2.培训客户和员工发现攻击。
According to PhishMe, a phishing defense solution, companies who train employees to identify and report attempted phishing attacks only have a5%的网络钓鱼易感性率。
为了帮助员工和客户发现这些攻击之一并更好地捍卫您的业务,请教他们以下常见的网络钓鱼标记:
Poor Spelling, Grammar, or Writing
许多业余网络罪犯不花时间来制作清晰而令人信服的电子邮件,品牌似乎总是会这样做,而外国网络罪犯通常会依靠Google翻译来翻译他们的信息。因此,如果您收到看似合理的发件人的书面电子邮件,请谨慎行事。
可疑网址
大多数网络钓鱼电子邮件都吸引人们点击恶意或假网站。为此,网络犯罪分子通常会通过创建一个外观的网站来欺骗该网站的URL,否则他们会通过缩短该网站的URL来掩盖其狡猾的URL。
每当您看到怪异或缩短的URL时,请确保将鼠标悬停在它上面,以查看Landing Page的网址是不同还是假货。
Mismatched Sender Address
即使网络罪犯可以完美地模仿您品牌的声音,格式化,徽标,地址和联系电子邮件地址,但他们仍然存在您无法复制的特征 - 您的发送者地址。
Cyber criminals will usually create a lookalike sender address or just use a string of characters in hopes that you won’t check it. To verify a brand’s sender address, check out the sender’s domain in the email’s “from” header and see if it matches the brand’s domain.
3. Invest in email security software.
如果您的公司有资bob全站app金,则电子邮件安全软件bob电竞官方下载证明点and梭子鱼are the most reliable and effective lines of defense against phishing.
精通的员工仍然可以成为巧妙地制作的网络钓鱼电子邮件和网络犯罪分子的受害者,不断地完善其恶意策略,例如从受损网站的合法领域发送网络钓鱼电子邮件。
But since email security software can identify unusual traffic patterns and monitor fishy URLs, it can effectively detect, block, and respond to these sophisticated threats before they reach your customers and employees’ inbox.
避免陷入困境
Arm yourself with DMARC, thorough employee training, and the best-fit email security software for your specific systems and situation, to shield your customers, employees, and brand from phishing attacks — no matter how enticing the bait is.
Editor's note: This post was originally published in December, 2018 and has been updated for comprehensiveness.
Originally published Aug 21, 2020 6:00:00 AM, updated August 21 2020
话题:
Cyber SecurityRelated Articles
