1. What is phishing?
Phishing attack is a criminal cheating process by getting sensitive information like username, password, fund and ID by means of disguising others. These messages claim that they are from official or internet administrator to get trust from the victim.
2. The ways that phishing spread
- Through virus
Criminals clone a total same website like ZBX.com, and send the fake website address to users’ computers with some virus programs and rubbish software, or put the address on search website to cheat users to log on to get users’ username, password, trade information or assets.
- Through SMS
Criminals send cheating SMS messages to users, claiming that users won prize or their accounts are stolen, asking users to log on the website whose address is in the message to verify his or her identity, and the website is launched by criminals, which is a fake one just to get users’information. If users log on the website and operate, then users’information like username, password will be known by the criminals.
- Setting up a fake website
Criminals launched a fake website, and then post fake activity information on social media like QQ and Wechat, this activity makes an empty promise, when users log on the fake website, their usernames and passwords will be known by the criminals.
- Through fake official mailbox
Criminals send lots of cheating mails to cheat the users to log on fake website, these mails ask the receivers to click the links in the mail to log on a website which is like ZBX.com with reasons like winning prizes or system update and so on, once users type in their usernames and passwords on the specified page, the information will be stolen.
3. To prevent phishing
- Use Relatively safe browser like Chrome and update to the latest version;
P.S.: Chrome is a google product, its good safety performance is well known to all, updating to the latest version is because that the low version one has lots of loopholes, like Punycode phishing attack link: https://blog.csdn.net/qq_27446553/article/details/70255763
- Do not install browser plug-in;
P.S.: Browser plug-in has very high authority, and there is a risk of hacking, like the Chrome User-Agent Switcher back door incident
- Never open suspected link, never type your ZBX username, password and personal information on unknown website, in case phishing websites or Trojans stole the information.
- Install anti-virus program, kill virus on your computer and cellphone periodically;
- Update system patch on time;
Never send the verification code that official send to you to others;
When you are logging on ZBX.com or trading, please make sure that if the domain name belongs to ZBX.com, if you are not sure about it, you may ask the customer service for help.