Blog

19 Jan 2017

Le ntsha yegmail ye-phishing idla ukukhohlisa ngabaxhasi abanolwazi: Nantsi imfihlo yokuyiqonda

/
ithunyelwe ngu

Abahlalutyi bezokhuseleko kwi-WordFence umqambi oqhankqalazo lwezixhobo zokukhusela baye babona oko bathi "yinto ephosakeleyo" ekukhohliseni i-Google Gmail amakhasimende ekufumaniseni izinto ezifihlakeleyo zokungena. I-scam ithetha ukuba iyayicima ubuninzi malunga nabaxhasi be-imeyli yokulawula kwaye iqulethwe ngumgibe ongqalileyo ukuba amehlo eninzi aqikelelweyo aya kucinga ukuba kunzima ukuthatha ingqalelo. Emva kokuhlukanisa le ngxaki, i-WordFence ivakalise efanayo kwiiblogi zabo kwaye iqaphele ukuhlaselwa.

Isebenza njani

I-scam scam isicwangciso esiqilileyo ngokuqinisekileyo. Ukuhlaselwa okanye umxhasi we-Gmail uza kuqala athole i-imeyli ukusuka kwinto yomthengi ebona ukuba uyakholelwa kuye. Ukufakwa kwi-imeyli yinto enayo yonke impawu zokuba irekhodi epheleleyo kwi-design ye-.pdf. Abathengi abasisigxina abanokwenza ukukhuphela ukuxhumano baya kufumana into engabonakaliyo kwibala elilandelayo.

Ukubamba kwimihlaba yolondolozo kwinxalenye enkulu kunika abaxhasi ukuhlaziywa kwengxelo. Ukufakela kule nxu lumano ngaphandle, kuya kuthatha ukuba ungene ngemvume ngekhasi le-Google ukuze ufike kwi-archive. Abathengi abangenayo i-Clueless baza kuquka i-ID yabo ye-imeyile kunye nencoko yamfihlo kwaye baqhubeke.

Idatha ye-Gmail URI

Oku kungena kwiphepha lixesha lesibini lenkcenkceshe ekhangelekile. Kuthabatha ngokwenene abaxhasi kwiinto zonke ezibonakalayo zokunyaniseka kokulungileyo 'Ngena ngemvume ngeGoogle' iphepha. Umxhasi ongenakuxhamla uya kubandakanya ukuqinisekiswa kwabo abangaqapheli ukuba ezi zinto zifihlakeleyo zithunyelwa ngokugqithiseleyo kwi-database.

Imiyalelo yesinyathelo ngesinyathelo ukuluhlula

Uluhlu oluchanekileyo lwengcaciso apha i-URL kwiphepha. Ilahleka "idatha.text / html.https ..." ngokwenene njengoko ibhulogi ikhulile yayo ichaza i-URI kungekhona i-URL. 'Ulwazi lwe-URI' olusetyenziswa njengenxalenye yale plan libandakanya irekhodi lonke kwi-bar yommandla wenkqubo.

Kwinqanaba xa umthengi echofoza oko akufunayo kukuxhamla kwingxelo yokubuyisa kwi-imeyile, iqalisa ngokuqinisekileyo umqulu kwelinye ithebhu (ngokuphindaphindiweyo 'Ngena ngephepha leGoogle') kuphela ukuba le nto inkohliso kwaye ithumela ulwazi lwakho kumqhubi.

Ingqungquthela yesibini yokwahlula le nkcazo ye-phishing ivela kwi-tweet eboniswe ngolu hlobo lulandelayo. Iyakhupha, ukuba indlela efanelekileyo yokuyiqonda oku kukuthi ngaba kwenzeka ukuba ube neskrini esiphezulu sokuzimisela esiza kubonisa ukuba unxibelelwano kwisigqibo sokugcinwa kwirekhodi ngokwenene imifanekiso ephosakeleyo (ekubeni ayinakulinganisa) evula loo mqulu. Ngethuba lokuba lilungele ukudibanisa, liyakulinganisa ngokufanelekileyo, kodwa le nto yinto nje iqela labathengi liza kuphawula kwaye abaninzi baya kudlula ithuba elikhulu.

Ngethuba lokusasaza ukuba unokubuza, iblogi ibonisa ukuba ungaya kwi-haveibeenpwned.com kwaye ukhangele nge-imeyile yakho kule ndawo ethembekileyo.

Kubukhulu kangakanani lo mkhwapho oye waphuma khona?

Njengoko kwinqanaba lebhodi ye-blog yi-CEO ye-WordFence uMarko Maunder, i-scam ibalwe kwiiveki zakutshanje. Yintoni ebangela ukuxineka ukuba kubalwe ngabaxhasi basisiseko, kodwa kunokuba bazikhethele okanye badibane nabathengi abaye bakhonkxa ngokubethelwa yiyo. Inyaniso iya kuxelwa, akukho ncinane nangona i-Google inokuyenza ukulwa nokuhlaselwa okunjalo njengoko isimemezelo esivela ku-Google sikhuphe:

"Siyikhumbula le ngxaki kwaye siqhubeka siqinisa ukulwa kwethu. Siza kunceda abakhwela kwiindawo zokuhlaselwa ngokuphanga kwiindlela ezibandakanyekayo, kubandakanywa: ukufundwa komatshini ekusetyenzisweni komatshini we-phishing, izaziso zokuphequlula ezikhuselekileyo ezicebisa abathengi bokuxhuma ezinobungozi kwimilayezo nakwiiprogram, ukuphepha ukungena ngemvume kwirekhodi, kwaye isibhakabhaka singumda ukusuka apho. Abaxhasi banako ukwenza ngokuqinisekisiweyo kwinqanaba eli-2 ukwenzela ukugcinwa kwirekhodi elongezelelweyo. "

Unokuzikhusela njani ekuhlaselweni okunjalo?

Kwimeko apho ucinga ukuba uyintlekele, into enokuyenza yitshintshi iqhosha lakho lemfihlo, oku kunikwe umntu ohlaselayo ongenakukugcina ngaphandle kwirekhodi yakho ngokwenza okufanayo ekupheleni kwakhe. Unokwenza isalathisi kwirekhodi yezenzo zakho zokurekhoda ukuba ubone ukuba omnye umntu ubhalise kwingxelo yakho. Unokwenza oku ngokuvula iRekodi yakho ye-Gmail kwaye emva koko kwisiseko esisezantsi, thepha kwiNgcaciso.

Kwimeko apho ungakhange uhlaselwe, kwaye ukhumbule ukuba unokuba uthintela ukuxhamla kwiiveki zakutshanje, ngoku ngoku kuya kuba yinto efanelekileyo yokutshintsha loo nto eyimfihlo.

Njengoko i-Google igxininisa, indlela efanelekileyo kakhulu yokuhlala ikhuselekile ngokuqinisekileyo, kukunika amandla ukuqinisekiswa kweesigaba ezimbini okanye ukhangele ukhuseleko olongezelelweyo.

Ngeli-imeyile ye-imeyile kunye negama elifihlakeleyo, umhlaseli unokukwenza nantoni na ayithandayo kunye neziqinisekiso. Ngoko ngokuqinisekileyo ibhaqa kakuhle ukutshintsha igama lakho le-Gmail yonke into ngoku kwaye uhlale ukhuselekile.

GTranslate Your license is inactive or expired, please subscribe again!