-
-
[转帖]钓鱼巧借漏洞寄生官网 小心被盗号
-
发表于: 2013-3-31 16:08
-
链接:0d6K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6h3g2F1k6i4c8Q4x3X3g2U0L8$3#2Q4x3X3g2U0L8W2)9J5c8X3q4J5N6r3W2U0L8r3g2Q4x3V1j5J5x3o6p5K6i4K6u0r3x3o6x3J5z5q4)9J5c8V1p5J5x3o6p5K6x3o6x3J5z5o6t1%4x3U0j5I4x3q4)9J5k6i4y4Z5N6r3#2D9
日期:2013年03月29日
当网站存有漏洞,黑客们就会利用该漏洞进行恶意钓鱼,知名大网站也可能存在这样的漏洞。近日,腾讯电脑管家发现,很多知名站点上存在的漏洞被钓鱼者利用,用以大规模传播钓鱼盗号网站,目前已有至少478个站点被利用,如CCTV养生频道官网、7天连锁酒店官网、阿里巴巴外贸圈官网等多家熟知的站点成为钓鱼网站的“宿主”。
据腾讯电脑管家反钓鱼专家邵付东介绍,此种钓鱼手法比较高阶,他们通过利用这些网站的漏洞,来获得知名网站的“掩护”,类似于“寄生”关系。有了这种关系,钓鱼者就可以在该网站的域名下构造出合乎网站规矩的跳转逻辑,进而将中招者引入到事先准备好的钓鱼页面。也有些站点,钓鱼者甚至可以利用漏洞实现远程控制,直接把钓鱼模版放置到该站点的服务器上。
截至目前,腾讯电脑管家监测到被利用的网址达到478个,且仍在以每天十几个的速度增长。
盗号者利用这种“有身份”的网站作为保护伞,很容易迷惑广大用户,导致账号被盗甚至经济损失。目前,电脑管家对问题网址的拦截已经达到了60万次/日。
(钓鱼者骗取信任的伎俩)
(点击进入后多数伪装成QQ空间,要求你输入QQ账号密码)
提醒各位站长注意自己站点安全,勤查补漏,防止被黑客利用;同时也提醒广大用户加强安全防范意识,不要轻易输入任何账号和密码,谨慎辨别后再操作。若发现有可疑URL,可登陆电脑管家官方举报平台(9beK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3N6#2j5h3&6B7K9h3q4Q4x3X3g2I4M7g2)9J5k6h3y4G2L8g2)9J5c8Y4u0W2M7r3!0J5N6q4)9#2k6Y4g2J5L8q4)9J5k6h3S2@1L8h3I4Q4x3U0k6F1j5Y4y4H3i4K6y4n7i4@1g2r3i4@1u0o6i4K6R3&6i4@1f1@1i4@1t1^5i4@1u0q4i4@1f1$3i4K6S2m8i4@1p5#2i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1%4i4K6V1@1i4@1t1#2i4@1f1^5i4K6R3@1i4K6V1I4i4@1f1%4i4@1q4q4i4@1p5I4i4@1f1#2i4@1q4q4i4@1t1$3i4@1f1#2i4@1q4q4i4K6R3&6i4@1f1#2i4K6R3#2i4@1p5^5i4@1f1#2i4K6W2n7i4@1p5J5i4@1f1&6i4K6V1^5i4K6W2r3i4@1f1#2i4K6W2o6i4@1p5^5i4@1f1$3i4K6S2q4i4@1p5#2i4@1f1#2i4K6R3^5i4@1t1H3i4@1f1@1i4@1t1^5i4@1u0q4i4@1f1$3i4K6S2m8i4@1p5#2i4@1f1#2i4K6V1H3i4K6S2q4i4@1f1#2i4@1t1H3i4K6R3$3i4@1f1%4i4@1q4n7i4K6S2n7i4@1f1#2i4K6S2p5i4@1t1K6i4@1f1^5i4@1u0r3i4K6W2n7i4@1f1^5i4@1p5I4i4K6S2o6i4@1f1$3i4@1p5H3i4@1t1^5i4@1f1#2i4@1q4q4i4K6W2q4i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1@1i4@1t1^5i4K6R3H3i4@1f1$3i4K6V1%4i4@1p5$3i4@1f1$3i4@1p5K6i4K6R3H3i4@1f1$3i4@1t1#2i4K6S2n7i4@1f1#2i4K6R3^5i4@1t1H3i4@1f1^5i4@1q4r3i4@1p5#2i4@1f1%4i4@1q4n7i4K6V1&6i4@1f1%4i4K6R3J5i4@1t1&6i4@1f1%4i4K6W2m8i4K6R3@1i4@1f1$3i4@1u0o6i4K6S2r3i4@1f1$3i4@1t1@1i4K6W2q4i4@1f1^5i4@1p5J5i4@1q4n7i4@1f1$3i4K6R3I4i4@1t1$3i4@1f1$3i4K6R3@1i4K6S2r3i4@1f1#2i4K6R3^5i4@1p5&6i4@1f1%4i4K6V1@1i4@1p5^5i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1@1i4@1u0o6i4K6W2m8i4@1f1%4i4@1q4o6i4@1q4o6i4@1f1@1i4@1t1^5i4K6R3H3i4@1f1$3i4K6V1%4i4@1t1$3i4@1f1&6i4K6V1%4i4@1t1@1i4@1f1$3i4K6W2n7i4@1t1@1i4@1f1$3i4K6V1$3i4@1t1H3i4@1f1^5i4K6R3%4i4@1t1K6i4@1f1#2i4@1q4q4i4K6V1^5i4@1f1$3i4K6V1$3i4@1t1&6i4@1f1^5i4@1q4q4i4@1u0m8i4@1f1#2i4K6W2p5i4K6W2n7i4@1f1@1i4@1t1^5i4@1q4p5i4@1f1#2i4K6R3#2i4@1q4o6i4@1f1#2i4K6V1I4i4K6S2m8i4@1f1#2i4K6R3%4i4@1u0m8i4@1f1$3i4K6W2p5i4@1p5#2i4@1f1K6i4K6R3H3i4K6R3J5
目前管家发现漏洞被利用的部分站点:
日期:2013年03月29日
当网站存有漏洞,黑客们就会利用该漏洞进行恶意钓鱼,知名大网站也可能存在这样的漏洞。近日,腾讯电脑管家发现,很多知名站点上存在的漏洞被钓鱼者利用,用以大规模传播钓鱼盗号网站,目前已有至少478个站点被利用,如CCTV养生频道官网、7天连锁酒店官网、阿里巴巴外贸圈官网等多家熟知的站点成为钓鱼网站的“宿主”。
据腾讯电脑管家反钓鱼专家邵付东介绍,此种钓鱼手法比较高阶,他们通过利用这些网站的漏洞,来获得知名网站的“掩护”,类似于“寄生”关系。有了这种关系,钓鱼者就可以在该网站的域名下构造出合乎网站规矩的跳转逻辑,进而将中招者引入到事先准备好的钓鱼页面。也有些站点,钓鱼者甚至可以利用漏洞实现远程控制,直接把钓鱼模版放置到该站点的服务器上。
截至目前,腾讯电脑管家监测到被利用的网址达到478个,且仍在以每天十几个的速度增长。
盗号者利用这种“有身份”的网站作为保护伞,很容易迷惑广大用户,导致账号被盗甚至经济损失。目前,电脑管家对问题网址的拦截已经达到了60万次/日。
(钓鱼者骗取信任的伎俩)
(点击进入后多数伪装成QQ空间,要求你输入QQ账号密码)
提醒各位站长注意自己站点安全,勤查补漏,防止被黑客利用;同时也提醒广大用户加强安全防范意识,不要轻易输入任何账号和密码,谨慎辨别后再操作。若发现有可疑URL,可登陆电脑管家官方举报平台(9beK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3N6#2j5h3&6B7K9h3q4Q4x3X3g2I4M7g2)9J5k6h3y4G2L8g2)9J5c8Y4u0W2M7r3!0J5N6q4)9#2k6Y4g2J5L8q4)9J5k6h3S2@1L8h3I4Q4x3U0k6F1j5Y4y4H3i4K6y4n7i4@1g2r3i4@1u0o6i4K6R3&6i4@1f1@1i4@1t1^5i4@1u0q4i4@1f1$3i4K6S2m8i4@1p5#2i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1%4i4K6V1@1i4@1t1#2i4@1f1^5i4K6R3@1i4K6V1I4i4@1f1%4i4@1q4q4i4@1p5I4i4@1f1#2i4@1q4q4i4@1t1$3i4@1f1#2i4@1q4q4i4K6R3&6i4@1f1#2i4K6R3#2i4@1p5^5i4@1f1#2i4K6W2n7i4@1p5J5i4@1f1&6i4K6V1^5i4K6W2r3i4@1f1#2i4K6W2o6i4@1p5^5i4@1f1$3i4K6S2q4i4@1p5#2i4@1f1#2i4K6R3^5i4@1t1H3i4@1f1@1i4@1t1^5i4@1u0q4i4@1f1$3i4K6S2m8i4@1p5#2i4@1f1#2i4K6V1H3i4K6S2q4i4@1f1#2i4@1t1H3i4K6R3$3i4@1f1%4i4@1q4n7i4K6S2n7i4@1f1#2i4K6S2p5i4@1t1K6i4@1f1^5i4@1u0r3i4K6W2n7i4@1f1^5i4@1p5I4i4K6S2o6i4@1f1$3i4@1p5H3i4@1t1^5i4@1f1#2i4@1q4q4i4K6W2q4i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1@1i4@1t1^5i4K6R3H3i4@1f1$3i4K6V1%4i4@1p5$3i4@1f1$3i4@1p5K6i4K6R3H3i4@1f1$3i4@1t1#2i4K6S2n7i4@1f1#2i4K6R3^5i4@1t1H3i4@1f1^5i4@1q4r3i4@1p5#2i4@1f1%4i4@1q4n7i4K6V1&6i4@1f1%4i4K6R3J5i4@1t1&6i4@1f1%4i4K6W2m8i4K6R3@1i4@1f1$3i4@1u0o6i4K6S2r3i4@1f1$3i4@1t1@1i4K6W2q4i4@1f1^5i4@1p5J5i4@1q4n7i4@1f1$3i4K6R3I4i4@1t1$3i4@1f1$3i4K6R3@1i4K6S2r3i4@1f1#2i4K6R3^5i4@1p5&6i4@1f1%4i4K6V1@1i4@1p5^5i4@1g2r3i4@1u0o6i4K6S2o6i4@1f1@1i4@1u0o6i4K6W2m8i4@1f1%4i4@1q4o6i4@1q4o6i4@1f1@1i4@1t1^5i4K6R3H3i4@1f1$3i4K6V1%4i4@1t1$3i4@1f1&6i4K6V1%4i4@1t1@1i4@1f1$3i4K6W2n7i4@1t1@1i4@1f1$3i4K6V1$3i4@1t1H3i4@1f1^5i4K6R3%4i4@1t1K6i4@1f1#2i4@1q4q4i4K6V1^5i4@1f1$3i4K6V1$3i4@1t1&6i4@1f1^5i4@1q4q4i4@1u0m8i4@1f1#2i4K6W2p5i4K6W2n7i4@1f1@1i4@1t1^5i4@1q4p5i4@1f1#2i4K6R3#2i4@1q4o6i4@1f1#2i4K6V1I4i4K6S2m8i4@1f1#2i4K6R3%4i4@1u0m8i4@1f1$3i4K6W2p5i4@1p5#2i4@1f1K6i4K6R3H3i4K6R3J5
目前管家发现漏洞被利用的部分站点:
[培训]内核驱动高级班,冲击BAT一流互联网大厂工作,每周日13:00-18:00直播授课
|
|
|---|---|
