什么是网络钓鱼，攻击类型和防御？

Phishing is a cybersecurity attack to convince target humans to convince to provide some valuable information about them or their assets. Phishing mainly targets human being and human-related vulnerabilities to exploit.

网络钓鱼是一种网络安全攻击，目的是诱使目标人员诱使他们提供有关其或其资产的一些有价值的信息。 网络钓鱼主要针对人类和与人类相关的漏洞加以利用。

网络钓鱼历史 (Phishing History)

The first legal lawsuit was filled in 2004 about the phishing. The attacker was a Californian teenager who has created a fake American Online web site. By sending emails to the targets where they are redirected to this fake web site the credit card details can be collected easily.

关于网络钓鱼的第一起法律诉讼于2004年提出。 攻击者是一位加利福尼亚少年，他创建了一个虚假的American Online网站。 通过将电子邮件发送到目标，然后将其重定向到该虚假网站，可以轻松收集信用卡详细信息。

网络钓鱼攻击类型 (Phishing Attack Types)

Phishing attacks can be implemented in different ways. Here is some of the most used.

网络钓鱼攻击可以以不同的方式实施。 这是一些最常用的。

• `Email` is the most common and know the type where fake emails are sent to the targets with different content and aim.
  “电子邮件”是最常见的一种，并且知道将虚假电子邮件发送到具有不同内容和目标的目标的类型。
• `Phone Calls` are made to the target in order to get some user name password or convenience to do some action which will exploit target assets.
  对目标进行“电话呼叫”是为了获得一些用户名密码或方便地执行将利用目标资产的某些操作。
• `Text messages` can be also used similar to email but with a less effectivity.
  “文本消息”也可以类似于电子邮件使用，但效果较差。

网络钓鱼的共同特征 (Common Features Of Phishing)

There are different ways to catch phishing but in general, phishing has some common features like below.

有多种捕获网络钓鱼的方法，但是通常，网络钓鱼具有一些共同的特征，如下所示。

• `Too Good To Be True` means it is not possible in a normal life which is very lucrative.
  “太好了不能成为现实”意味着在一个非常有利可图的正常生活中这是不可能的。
• `Sense of Urgency` means it tries to take some actions without thinking or checking the truth.
  “紧迫感”意味着它试图采取一些行动，而没有考虑或核实事实。
• `Hyperlinks` are generally used to redirect a user to the attacker’s site, application or action
  “超链接”通常用于将用户重定向到攻击者的站点，应用程序或操作
• `Attachment` mainly used to run some script, tool, application or exploit the targets system like desktop, laptop, smartphone etc.
  附件主要用于运行某些脚本，工具，应用程序或利用目标系统，例如台式机，笔记本电脑，智能手机等。
• `Unusual Sender` means the phishing sender or attackers are generally unknown by the target.
  “不正常的发送者”表示目标通常不知道网络钓鱼发送者或攻击者。

LEARN MORE  What Is Spoofing (Attack)?

了解更多什么是欺骗(攻击)？

有价值的信息 (Valuable Information)

The main target of the attacker is information which is valuable for the attacker and as well as for the target. Here we will list them in general.

攻击者的主要目标是对攻击者以及目标都有价值的信息。 在这里，我们将大体列出它们。

• `Username and Password`
  用户名和密码
• `Credit Card Information`
  `信用卡信息`
• `Topology`
  拓扑
• `Names and Surnames`
  `名字和姓氏`
• `Social Connections`
  社会交往
• `Email Accounts`
  电子邮件帐户
• `Enterprise Accounts`
  企业帐户

十大常规电子邮件主题(Top 10 General Email Subjects)

Attackers create and use some scenarios during a phishing attack. Generally, they have a common subject were top 10 of them listed below.

攻击者在网络钓鱼攻击期间创建并使用某些方案。 通常，他们有一个共同的主题，他们在下面列出了前10名。

• `De-activation of in Process`
  停用过程中
• `A Delivery Attempt was made`
  `进行了送货尝试`
• `You have a new voice mail`
  `您有新的语音邮件`
• `Failed Delivery for Package`
  包裹交付失败
• `Staff Review 2018`
  《员工回顾2018》
• `Revised Vacation&Sick Time Policy`
  修订的假期和病假时间政策
• `APD Notification`
  “ APD通知”
• `Order From Amazon`
  从亚马逊订购
• `Re:w-2`
  Re：w-2

• `Scanned image from [email protected]`

  来自[受电子邮件保护的]的扫描图像

仿冒网站URL技巧(Phishing Web URL Tricks)

Most used phishing tick is redirecting the target to the fake web site and URL. Generally, bank, social network, email, corporate web sites or URL’s are imitated. Here we will list some imitation of these URL.

最常用的网络钓鱼标记是将目标重定向到伪造的网站和URL。 通常，模仿银行，社交网络，电子邮件，公司网站或URL。 在这里，我们将列出对这些URL的一些模仿。

• `https://www.ebay.com` Correct
  `https：// www.ebay.com`正确
• `https://www.ebay.info.com`Fake
  https：// www.ebay.info.com`假
• `https://www.ebays.com`Fake
  https：// www.ebays.com`假
• `https://www.ebayy.com`Fake
  https：// www.ebayy.com`假
• `https://www.ebay.net` Fake
  https：// www.ebay.net`假

网上诱骗vs虚假vs虚假(Phishing vs Vishing vs Smishing)

Phishing is a generic term used to define this attack type. But there is some type of attacks which is the under umbrella one of the phishing.

网络钓鱼是用于定义此攻击类型的通用术语。 但是，有些攻击是网络钓鱼的一种手段。

• Vishing is a new form of phishing like Voice Phishing and done by calling the target.
  网络钓鱼是一种新的网络钓鱼形式，例如语音网络钓鱼，是通过呼叫目标来完成的。
• `Smishing` is phishing by using SMS Phishing and mainly used to redirect the user to a link or respond with valuable information.
  “ Smishing”是使用SMS网络钓鱼的网络钓鱼，主要用于将用户重定向到链接或使用有价值的信息进行响应。

网络钓鱼防御 (Defence with Phishing)

Phishing attacks are very popular and successful in cybersecurity. We have to take some measures to prevent phishing attacks and their damages. Here some tips about defending against Phishing.

网络钓鱼攻击在网络安全中非常流行并且成功。 我们必须采取一些措施来防止网络钓鱼攻击及其破坏。 这里有一些防范网络钓鱼的技巧。

• Email Gateways are useful which provides technical measures to detect suspicious emails.
  电子邮件网关非常有用，它提供了技术措施来检测可疑电子邮件。

• User Awareness is the most important ways to defend against phishing

  用户意识是防范网络钓鱼的最重要方法

  • Check URLs is done by the user for different hyperlinks
    检查URL由用户完成以查找不同的超链接
  • Check source is done by the user for its identity
    检查源由用户完成以确认其身份
  • Check the content whether the mail is related with the user
    检查内容是否与用户相关

LEARN MORE  What Is Spoofing (Attack)?

了解更多什么是欺骗(攻击)？

翻译自: https://www.poftut.com/what-is-phising-attack-types-and-defences/