{"id":3099,"date":"2015-06-08T04:47:23","date_gmt":"2015-06-08T04:47:23","guid":{"rendered":"http:\/\/www.kaspersky.com.cn\/blog\/?p=3099"},"modified":"2020-02-27T00:17:34","modified_gmt":"2020-02-26T16:17:34","slug":"previous-next-multi-stage-phishing-that-starts-with-real-links","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.cn\/blog\/previous-next-multi-stage-phishing-that-starts-with-real-links\/3099\/","title":{"rendered":"\u91c7\u7528\u771f\u5b9e\u94fe\u63a5\u7684\u591a\u9636\u6bb5\u7f51\u7edc\u9493\u9c7c"},"content":{"rendered":"

\u6700\u8fd1\u5361\u5df4\u65af\u57fa\u5b9e\u9a8c\u5ba4\u4e13\u5bb6\u53d1\u73b0\u4e86\u4e00\u79cd\u72e1\u733e\u7684\u6b3a\u8bc8\u65b9\u6cd5\uff0c\u4f7f\u5f97\u7f51\u7edc\u72af\u7f6a\u5206\u5b50\u65e0\u9700\u8bbf\u95ee\u7528\u6237\u7684\u767b\u5f55\u540d\u548c\u5bc6\u7801\uff0c\u5373\u53ef\u7a83\u53d6\u4e2a\u4eba\u4fe1\u606f\u3002\u8fd9\u4e9b\u7f51\u7edc\u72af\u7f6a\u5206\u5b50\u5e76\u672a\u8bd5\u56fe\u7a83\u53d6\u53d7\u5bb3\u4eba\u767b\u5f55\u51ed\u8bc1\u2014\u800c\u662f\u91c7\u53d6\u4e86\u66f4\u52a0\u806a\u660e\u7684\u65b9\u6cd5\u3002<\/p>\n

<\/p>\n

\u53d7\u5bb3\u4eba\u6700\u521d\u4f1a\u6536\u5230\u4e00\u5c01\u7535\u90ae\uff0c\u8981\u6c42\u70b9\u51fb\u90ae\u4ef6\u5185\u7684\u94fe\u63a5\u8fdb\u5165\u5b98\u7f51\u8f93\u5165\u65b0\u7684\u5bc6\u7801\uff1b\u5426\u5219\u7684\u8bdd\u4ed6\u4eec\u7684\u8d26\u6237\u5c06\u88ab\u5c01\u95ed\u3002\u4ee4\u4eba\u610f\u5916\u7684\u662f\uff0c\u8fd9\u4e9b\u94fe\u63a5\u7684\u786e\u662f\u5f00\u53d1\u5546\u5b98\u7f51\u7684\u7f51\u5740\u2014\u4f8b\u5982\uff0cWindows Live\u5b98\u7f51\u3002<\/p>\n

<\/p>\n

\u5728\u6388\u6743\u6210\u529f\u540e\uff0c\u53d7\u5bb3\u4eba\u4f1a\u6536\u5230\u6765\u81ea\u4e00\u4e2a\u672a\u77e5\u5e94\u7528\u7684\u4e00\u7cfb\u5217\u6743\u9650\u8bf7\u6c42\u3002\u8fd9\u4e9b\u6743\u9650\u5305\u62ec\uff1a\u81ea\u52a8\u767b\u5f55\u3001\u8bbf\u95ee\u914d\u7f6e\u6587\u4ef6\u4fe1\u606f\u3001\u901a\u8baf\u5f55\u4ee5\u53ca\u4e00\u7ec4\u7535\u90ae\u5730\u5740\u3002\u4e00\u65e6\u540c\u610f\u8fd9\u4e9b\u8bf7\u6c42\uff0c\u7f51\u7edc\u72af\u7f6a\u5206\u5b50\u5c06\u80fd\u8f7b\u677e\u8bbf\u95ee\u6211\u4eec\u7684\u4e2a\u4eba\u4fe1\u606f\u3002<\/p>\n

\u8fd9\u4e9b\u8eab\u4efd\u4e0d\u660e\u7684\u9ed1\u5ba2\u79d8\u5bc6\u6536\u96c6\u4fe1\u606f\uff0c\u8086\u610f\u5730\u8fdb\u884c\u5404\u79cd\u6b3a\u8bc8\u6d3b\u52a8\u3002\u4f8b\u5982\uff0c\u4ed6\u4eec\u53ef\u4ee5\u7528\u8fd9\u4e9b\u4fe1\u606f\u53d1\u9001\u5783\u573e\u90ae\u4ef6\uff0c\u6216\u8005\u9493\u9c7c\u7f51\u7ad9\u6216\u6076\u610f\u7f51\u7ad9\u7f51\u5740\u94fe\u63a5<\/a>\u3002<\/p>\n

\u5de5\u4f5c\u539f\u7406\u63a2\u7a76<\/strong><\/p>\n

OAuth\u6388\u6743\u534f\u8bae\u867d\u7136\u5b9e\u7528\uff0c\u4f46\u5728\u5b89\u5168\u65b9\u9762\u5374\u975e\u5c3d\u5584\u5c3d\u7f8e\uff0c\u8fd9\u4f7f\u5f97\u7528\u6237\u5728\u65e0\u9700\u63d0\u4f9b\u767b\u5f55\u51ed\u8bc1\u7684\u60c5\u51b5\u4e0b\uff0c\u5c31\u80fd\u5f00\u653e\u5bf9\u53d7\u4fdd\u62a4\u8d44\u6e90\uff08\u901a\u8baf\u5f55\u3001\u5de5\u4f5c\u65e5\u7a0b\u4ee5\u53ca\u5176\u5b83\u4e2a\u4eba\u4fe1\u606f\uff09\u7684\u53d7\u9650\u8bbf\u95ee\u6743\u9650\u3002\u5728\u4e00\u4e9b\u793e\u4ea4\u7f51\u7edc\u4e0a\u7684\u5e94\u7528\u7a0b\u5e8f\u4e2d\u666e\u904d\u4f7f\u7528\uff0c\u4f8b\u5982\uff1a\u8bbf\u95ee\u7528\u6237\u7684\u901a\u8baf\u5f55\u3002<\/p>\n

\u7531\u4e8e\u793e\u4ea4\u7f51\u7edc\u4e0a\u7684\u5e94\u7528\u4e5f\u4f7f\u7528OAuth\u534f\u8bae\uff0c\u56e0\u6b64\u4f60\u7684Facebook\u8d26\u6237\u4e5f\u5e76\u4e0d\u5b89\u5168<\/a>\u3002\u6076\u610f\u5e94\u7528\u7a0b\u5e8f\u901a\u8fc7\u5229\u7528\u7528\u6237\u8d26\u6237\u7684\u8bbf\u95ee\u6743\u9650\uff0c\u968f\u610f\u53d1\u9001\u5783\u573e\u90ae\u4ef6\u3001\u6076\u610f\u6587\u4ef6\u4ee5\u53ca\u7f51\u7edc\u9493\u9c7c\u94fe\u63a5\u3002<\/p>\n

\n

7 simple steps to avoiding Facebook #phishing<\/a> attempts \u2013 https:\/\/t.co\/Qj68bST6HQ<\/a> pic.twitter.com\/V6rinEa2jI<\/a><\/p>\n

\u2014 Kaspersky (@kaspersky) April 24, 2015<\/a><\/p><\/blockquote>\n