关于电话电子邮件诈骗的骨感

电话诈骗 (Phone Scams)

Phone scammers call you for three main reasons: to get you to reveal sensitive information about yourself, to trick you into performing an action of some kind like buying giftcards or downloading malware/spyware, or to get you to respond. A variety of scams pose as legitimate companies offering a prize or free vacations, threating to arrest you for a violation, pose as fake tech support, or even someone you know to try to extort money, information, or a specific action out of you. Many of these calls are made on a dialer, calling random numbers and playing automated robocall messages, as seen peppered throughout this post.

诈骗电话给您打电话的原因主要有三个：让您透露有关您自己的敏感信息，诱使您执行某种行为，例如购买礼品卡或下载恶意软件/间谍软件，或诱使您做出响应。 各种各样的骗局构成提供奖品或免费假期的合法公司，扬言以违法逮捕您，冒充技术支持，甚至是您认识的企图勒索金钱，信息或采取特定行动的人。 这些电话中的许多电话都是在拨号器上拨打的，它会拨打随机号码并播放自动robocall消息，这在整个帖子中都可以看到。

演示地址

SCAM — Hello? Are you there? Could be trying to record the victim to say the word ‘Yes’ as consent in fraudulent charges?

骗局-您好？ 你在那里吗？ 可以尝试记录受害人在欺诈性指控中说“是”的同意吗？

伪造来电 (Faked Calls with Spoofing)

Some of the calls that come in are so brazen that they do not even try to hide the number they are calling from, showing international digits, or are calling from a U.S. Territory or the Carribean, which have similar phone numbers to United State numbers (like a 264 area code). Other calls are ‘spoofed’ to look like legitmate numbers, such as the call for an Icloud account scam that arrives on the Apple Support number. The truth is that caller ID is not, and never should be used as validator. Over the last few years the FTC has promised manditory Call Authentication to stop a lot of spoofing with the STIR/SHAKEN model, which in itself could inspire its own post. While it would stop spoofing, not neccesarily robocalls; it has yet to be implemented.

一些打来的电话很冒昧，以至于他们甚至都没有试图隐藏正在拨打的电话，显示国际号码，或者是从美国领土或加勒比海拨打的电话 ，这些电话的电话号码与美国电话号码相似 (例如264区号)。 其他电话看起来像是合法电话号码，被“欺骗”，例如，通过Apple支持号码到达的Icloud帐户诈骗电话。 事实是，呼叫者ID不是，并且永远不应用作验证者。 在过去的几年中，联邦贸易委员会(FTC)承诺通过强制性的电话认证( STI)来停止使用STIR / SHAKEN模型进行的大量欺骗，该模型本身可能会激发自己的职位。 虽然它可以停止欺骗，但不一定是robocall； 它尚未实施。

演示地址

SCAM — Icloud Account Scam originating from a spoofed Apple Support Number, 800–275– 2273. “Your Icloud Account has been Breached, so do not perform any online activities. Press 1 to connect with apple support, thank you.”

骗局— Icloud帐户骗局源自欺骗性的Apple支持号码800–275–2273。“您的Icloud帐户已被破坏，因此请勿执行任何在线活动。 按1即可获得Apple支持，谢谢。”

常识警告 (Common Sense Caution)

Though spoofing can fake a number going outbound, very few methods exist to spoof inbound (but it is possible). If the time comes when you are suspicious of a phone call, ask for a number in which to call them back as a means of tracing or verifying their identity. Because many of these calls do not try to spoof a number, you can always google the area code of an inbound call to determine if its origin is from a US Territory. Do not give information over the phone to verify your identity, especially if they called you.Setup passcodes to all your accounts (insurance, banks, utilities, credit cards, job offers) to mitigate being a source to gain, provide or validate personal information. Chcck out my post on Supply Chain Attacks for more attacks methods via Social Engineering.

尽管欺骗可以伪造出站号码，但很少有方法可以欺骗入站(但有可能)。 如果您怀疑打来电话的时间到了，请要求提供一个可以回叫他们的电话号码，以跟踪或验证其身份。 由于这些呼叫中的许多呼叫都不试图欺骗电话号码，因此您始终可以使用Google呼入电话的区号来确定其起源是否来自美国领土。 请勿通过电话提供信息来验证您的身份，尤其是当他们打给您时。请为您的所有帐户(保险，银行，公用事业，信用卡，工作机会)设置密码，以减轻获取，提供或验证个人信息的来源。 请点击我在供应链攻击中的文章 ，了解通过社会工程学获得更多攻击方法的信息。

演示地址

SCAM — “Hello this is Rod Stewart, calling for the Federal Bureau of Investigation on behalf of your Father Federal Agent [unintelligable].”

SCAM —“你好，是罗德·斯图尔特(Rod Stewart)，他代表你的父亲联邦代理人[无法理解]呼吁联邦调查局。”

要求回电 (Demand to Call Them Back)

Since spoofing can be done on calls made to you, but rarely done via calls you make, offer to call them back and gather the following information:

由于欺骗可以在打给您的电话上进行，但很少通过打给您的电话进行，因此建议您回电并收集以下信息：

1. Call Back Number
   回拨号码
2. Google Area Code Given
   给出了Google区号
3. Caller’s Name, Supervisor’s Name
   来电者姓名，主管姓名
4. Employee ID or direct extension
   员工编号或直接分机
5. Nature of call
   通话性质
6. They will have likely researched you (see data broker section) so they have tricks to appeal to your soft spots or appear as a legitimate relationship you are already familiar with. Do not provide additional information. Answer any questions with short sentences, do not offer information.
   他们可能会研究过您(请参阅数据代理部分)，因此他们有技巧来吸引您的软肋或表现为您已经熟悉的合法关系。 不提供其他信息。 用短句回答任何问题，不提供任何信息。
7. Keep this information in a log because they will likely call back.
   将此信息保存在日志中，因为它们可能会回叫。
8. Ask to recieve information in writing, but don’t give them your address. They should have it on file.
   要求以书面形式接收信息，但不要给他们您的地址。 他们应该将其存档。

演示地址

SCAM — “DHL International Ning China Mr. Wei inquires press the foot.” in Mandarin

SCAM —“ DHL International Ning China韦先生查询压脚。” 用普通话

除非来自经过验证的来源，否则从不提供信息 (Never Provide Information Unless it is From a Verified Source)

There are a lot of scams right now targeting the elderly, so be vigilant. What you don’t know is that many phone databases are available about you and your phone number, disclosing your demographics and those of your relatives or associates.

现在有很多针对老年人的骗局，所以要提高警惕。 您所不知道的是，有许多关于您和您的电话号码的电话数据库，可以显示您的人口统计数据以及您的亲戚或同事的人口统计数据。

演示地址

SCAM — This call is from The Department of Social Security Administration. The reason you have receiced this phone call is to inform you that there is a legal enforcement action filed on your social security number for criminal activity. Under section 18 of subsection 1 028 so before this matter goes before the federal courthouse or before you get arrested. Please call immediately on our department number [OMITTED]. I repeat that is [OMITTED]. Thank you.”

SCAM —此电话来自社会保障管理部。 您收到此电话的原因是通知您，您的社会保险号上有针对犯罪活动的法律诉讼。 根据第1 028条第18款的规定，在此事之前，应先交由联邦法院或您逮捕之前。 请立即致电我们的部门编号[OMITTED]。 我再说一遍。 谢谢。”

电子邮件诈骗 (Email Scams)

Email Scams can be tricky, often including fraudulent links/codes in email, and fake login sites that try to steal your passwords and will often install virus/malware/adware and spyware. Scams will promise money, ask for more information, or ask for a small fee to process your claim, or say an incorrect claim was processed and they need you to wire extra money.

电子邮件诈骗可能很棘手，通常包括电子邮件中的欺诈性链接/代码，以及试图窃取您的密码并经常安装病毒/恶意软件/广告软件和间谍软件的假冒登录网站。 诈骗会答应金钱，要求提供更多信息，或要求收取少量费用来处理您的索赔，或者说诈骗请求已被处理，他们需要您额外汇款。

演示地址

SCAM — This call is from Department of Social Security Administration. The reason you have received this phone call from our department is to inform you that there’s a legal enforcement actions filed on your social security number for fraudulent activities. So when you get this message kindly call back at the earliest possible on our number before we begin with the legal proceedings that is [OMITTED]. Thank you.

SCAM —此电话来自社会保障管理局。 您收到我们部门打来电话的原因是为了通知您，您的社会保险号上存在针对欺诈活动的法律强制执行措施。 因此，当您收到此消息时，请尽快拨打我们的电话，然后再开始进行[OMITTED]法律诉讼。 谢谢。

欺诈邮件的常见征兆 (Common Indications of Fraudulent Emails)

1. Misspelled words, names, mismatching logos, or improper use of grammar or punctuation
   拼写错误的单词，名称，徽标不匹配，或语法或标点符号使用不当
2. Mismatching domain names
   域名不匹配
3. Prompts asking you to contact an unverified source, such as a gmail or hotmail account.
   提示要求您联系未经验证的来源，例如gmail或hotmail帐户。
4. Prompts asking you to click a link, or download a file wihin the email itself with the goal of pulling down spyware/malware/viruses.
   提示您单击链接，或通过电子邮件本身下载文件，以删除间谍软件/恶意软件/病毒。

演示地址

SCAM — This is an important notice from the Social Security Administration. The reason you have received this notice from our department is because we have noticed some suspicious and fraudulent activities under your Social Security Number, and we are going to suspend I.T. (hahaha). So, if you want to know about this and you want to talk to our representative please press One. I repeat, press one to connect.

SCAM-这是社会安全总署的重要通知。 您收到我们部门通知的原因是，我们注意到您的社会安全号码下有一些可疑和欺诈性活动，我们将暂停IT(哈哈哈)。 因此，如果您想了解这一点并想与我们的代表交谈，请按One。 我重复一遍，按一下进行连接。

常见的电子邮件诈骗 (Common Email Scams)

1. Sweepstakes Scams — “You Won Money! Just click on this link!”

   抽奖诈骗 -“您赢了钱！ 只需点击此链接！”

2. Lost Relative Scams — “I am your distant relative. Send money to collect your inheritance!”

   失落的相对骗局 -“我是你的远亲。 寄钱收集遗产！”

3. Bitcoin Blackmail — Fraud email stating they know your secrets and your password requring you to send bitcoin to a bitcoin address to keep your secrets safe. This can be ignored as they likely pulled your information from data breaches.

   比特币勒索 –欺诈性电子邮件，说明他们知道您的秘密和密码，要求您将比特币发送到比特币地址以保护您的秘密安全。 可以忽略这一点，因为他们很可能从数据泄露中提取了您的信息。

4. Invoice Scam — Open this attachment to look at this invoice! Login to this website for microsoft where the domain looks really weird.

   发票诈骗 —打开此附件以查看该发票！ 登录到该网站的Microsoft，该域名看起来确实很奇怪。

5. Fake Charity Scams

   假慈善骗局

6. Fake AntiVirus Scams — Download this tool to clean your machine!

   假防病毒骗局 —下载此工具以清洁计算机！

7. CEO Scams — Hi! I’m your CEO! Do me a quick favor! Just call me or reply to this email!

   CEO诈骗 -嗨！ 我是你的首席执行官！ 请帮我个忙！ 只需给我打电话或回复此电子邮件！

8. Fake UPS/Fedex or Fax Machine emails

   伪造UPS / Fedex或传真机电子邮件

Credential Phishing Email (scam)

凭据网络钓鱼电子邮件(欺诈)

如何保护自己 (How to Protect Yourself)

1. Use a really good reputatble antivirus program like Trend Micro, McAfee, Sophos, MalwareBytes, etc etc etc
   使用一个非常好的信誉良好的防病毒程序，例如趋势科技，McAfee，Sophos，MalwareBytes等。
2. Be cautious of emails that have mispelled words, logo mismatches, or those that come from funny looking domains. Even ‘real’ domains can be spoofed.
   请注意电子邮件拼写错误，徽标不匹配或来自有趣域的电子邮件。 甚至“真实”域名也可以被欺骗。
3. Never enter your username and password in fake looking sites.
   切勿在虚假网站中输入用户名和密码。
4. Never respond to a scam email.
   切勿回复欺诈邮件。
5. Keep track of all your usernames and passwords in a local password database (like keepass). (I am opposed to cloud based password managers). Ask me why.
   在本地密码数据库(例如keepass)中跟踪所有用户名和密码。 (我反对基于云的密码管理器)。 问我为什么。
6. Change your passwords often.
   经常更改密码。
7. Use unique passwords on each site.
   在每个站点上使用唯一的密码。

Invoice Scam

发票诈骗

骗子如何获取您的信息？ (How are Scammers Getting your Information?)

For United States citizens, many of the tactics ‘background check companies’ (data brokers) use is to host or gather your data overseas, which is grey area legal due to the weak privacy law in the States compared to Europe (GDPR) with the goal of charging others for your personal data. A common scam that many Data Brokers engage in will be to post your information, but also host a ‘data removal service’ or ‘privacy services’ whose services you have to purchase to have your data removed meanwhile they feed your profile to other companies they have setup, which you also have to pay to remove. Even the process of emailing or submitting a form to remove your information is often baited with metrics in place to gather even more information about you. Most of the data is sourced from public records, even obituaries or supermarket sweepstakes and data breaches.

对于美国公民而言，许多“背景调查公司”(数据经纪人)使用的策略是在海外托管或收集您的数据，这是灰色地带的法律，因为与欧洲(GDPR)相比，美国的隐私保护法薄弱。向他人收取您的个人数据的目标。 许多数据经纪人从事的一个常见骗局是发布您的信息，但同时托管一个“数据删除服务”或“隐私服务”，您必须购买其服务才能删除数据，同时他们将您的个人资料提供给其他公司安装完毕，您还必须付费才能删除。 即使是通过电子邮件发送或提交表单以删除您的信息的过程，通常也可以通过适当的指标来吸引，以收集有关您的更多信息。 大多数数据来自公共记录，甚至包括itu告，超市抽奖和数据泄露。

匿名删除请求 (Anonymize Removal Requests)

Your information can be removed from most data broker sites (although it is often reposted) by the following methods. Keep in mind they will try to squeeze more info from you at that time, and even may sell your removal data on the backend:

您的信息可以通过以下方法从大多数数据代理站点中删除(尽管通常会被重新发布)。 请记住，他们当时将尝试从您那里获取更多信息，甚至可能在后端出售您的删除数据：

1. Use a VPN service to hide your IP Address
   使用VPN服务隐藏您的IP地址
2. Visit the site in ‘incognto’ or private mode, then clear your cookies/cache after.
   以“ incognto”或私有模式访问该网站，然后清除您的cookie /缓存。
3. Use a temporary Microsoft or gmail account that you plan to dispose of with non-personal information attached. Some of these fake emails I’ve only used for data broker removal subscribed my email to porn spam. Seriously. Likely wont happen every time but has happened.
   使用计划处置的临时Microsoft或gmail帐户，并附上非个人信息。 我仅用于删除数据代理的一些虚假电子邮件使我的电子邮件成为色情垃圾邮件。 说真的 可能不会每次都发生，但已经发生。
4. Setup a VOIP number (avoid using your real cell phone number) to provide to thier service because they will log that information in their profile for you, to repost again at a later time.
   设置一个VOIP号码(避免使用您的真实手机号码)以提供给他们的服务，因为他们会将这些信息记录在您的个人资料中，以便以后再次发布。
5. Sometimes your drivers license is required, and if so, remove all personally identifiying information including your photo, address, license number, license class, physical characteristics, or anything that can be used to impersonate you. Keep your name. :)
   有时需要您的驾驶执照，如果需要，请删除所有个人识别信息，包括您的照片，地址，执照编号，执照类别，物理特征或任何可用来假冒您的东西。 保持你的名字。 :)
6. Get a Post Office Box to route your mail through.
   获取一个邮政信箱来路由您的邮件。

不要害怕生活 (Don’t Live Your Life in Fear)

Be on the lookout for fraudulent emails or phone calls asking you to disclose information, impersonate someone you know, get you to perform an action like install software or mail gift cards, or asking you to click on a link in a well crafted email with the purpose to install malicious software. However it is important to maintain a balance in your life. Don’t live your life in paranoia, no one is out to get you. This is simply a potential scammer who has an endgoal to trick you. Lying is not intelligence & theives embody some great weakness. Be strong and don’t fall for it.

警惕欺诈性电子邮件或电话，要求您披露信息，假冒您认识的人，让您执行安装软件或邮件礼品卡之类的操作，或者要求您在精心制作的电子邮件中单击带有目的是安装恶意软件。 但是，保持生活平衡很重要。 不要在妄想症中度过生活，没有人会抓住你。 这只是一个潜在骗子，具有欺骗您的目标。 说谎不是智力，而主题则表现出一些巨大的弱点。 坚强，不要为此而屈服。

Don’t live your life in fear. You’re not going to be arrested via phone. People make mistakes. Chances are that no one is out to get you. Be yourself, live your life without fear and don’t let scams cause you to lose trust of those around you, and those you love.

不要害怕生活。 您不会通过电话被捕。 人们会犯错误。 可能没有人会抓住你。 做你自己，生活无忧，不要让诈骗使你对周围的人和所爱的人失去信任。

演示地址

Robocal threatening arrest

抢劫威胁逮捕

参考/资源/来源 (References/Resources/Sources)

1. As Listed
   如所列
2. 21 years of experience in Cyber Security (you’re welcome).
   21年的网络安全经验(不客气)。

翻译自: https://medium.com/infoseconds/the-skinny-about-phone-email-scams-7a9c3e7f04e3