87110228(24小时服务、投诉热线)
 87110596(办公)
一卡通服务网站 |  网上营业厅

新闻与通知
关于防范钓鱼诈骗邮件的通知
发布时间: 2018-11-23 发布者: 陆焰桃
  近期,多个用户向我中心反馈收到比特币勒索邮件。经我中心调查,该类邮件为钓鱼诈骗邮件。

什么是比特币勒索邮件?如何鉴别?

比特币勒索邮件是近期国内外盛行的一种新型电子邮件诈骗方式,用户会收到如附件所示的邮件。

一般的比特币勒索邮件内容如下:邮件发件地址与收件地址相同,内容一般以英文编写,声称已经入侵了受害邮箱,让受害者误信自己电脑存储的数据和所有网络行为都被黑客掌控。但是作为骗局的一部分,敲诈者要求受害者缴纳比特币赎金——其扬言,如果不满足它们提出的要求,就曝光所谓的受害者访问色情网站时的视频内容。

邮箱账号密码真的被黑客监控了吗?

黑客可利用目前邮件系统的漏洞通过简单技术即可伪造发件邮箱地址,勒索邮件中发件地址与收件地址相同,并不代表黑客真的入侵了受害邮箱。

我校邮件系统采取应对措施了吗?

针对此类邮件,我校邮件系统根据用户反馈的诈骗邮件内容进行关键字和来源黑名单等过滤。但由于此类邮件经常变换内容表述,或采取加入特殊字符的方式避开邮件过滤,因此邮件系统无法完全过滤此类邮件。

用户如何应对?

收到此类勒索邮件立即删掉即可。但个人上网仍应保持良好的上网习惯。

建议用户对重要账号使用高强度密码,不点击、不访问不可信网站,不使用不可信软件和APP,不使用不可信WiFi和上网终端。另外,用户可以使用浏览器登录邮箱,在左上角的自助查询里,点击登录查询和发件查询,看是否有异常的成功登录记录和发件记录。如有,建议尽快对所使用的电脑设备进行病毒查杀,然后修改账号的密码和备份重要文件。


附件: 用户反馈的勒索邮件示例

发件人: xxxx@scut.edu.cn
发送时间: 20181114星期三
收件人: xxxx@scut.edu.cn
抄送:
主题: xxxx@scut.edu.cn was hacked.

 Hello!

 My nickname in darknet is Th3R34L.
 I hacked this mailbox more than six months ago,
 through it I infected your operating system with a virus (trojan) created by me and have been monitoring you for a long time.

 If you don't belive me please check 'from address' in your header, you will see that I sent you an email from your mailbox.

 Even if you changed the password after that - it does not matter, my virus intercepted all the caching data on your computer
 and automatically saved access for me.

 I have access to all your accounts, social networks, email, browsing history.
 Accordingly, I have the data of all your contacts, files from your computer, photos and videos.

 I was most struck by the intimate content sites that you occasionally visit.
 You have a very wild imagination, I tell you!

 During your pastime and entertainment there, I took screenshot through the camera of your device, synchronizing with what you are watching.
 Oh my god! You are so funny and excited!

 I think that you do not want all your contacts to get these files, right?
 If you are of the same opinion, then I think that $500 is quite a fair price to destroy the dirt I created.

 Send the above amount on my BTC wallet (bitcoin): 3QT1y74eXKf58RVTLp97PRssjAVW9Nebg6
 As soon as the above amount is received, I guarantee that the data will be deleted, I do not need it.

 Otherwise, these files and history of visiting sites will get all your contacts from your device.
 Also, I'll send to everyone your contact access to your email and access logs, I have carefully saved it!

 Since reading this letter you have 24 hours!
 After your reading this message, I'll receive an automatic notification that you have seen the letter.

 I hope I taught you a good lesson.
 Do not be so nonchalant, please visit only to proven resources, and don't enter your passwords anywhere!
 Good luck!