|
|
|
|
|
|
|
|
|
Фишинг
| Словарь в сфере информационной безопасности |
|
Phishing, английский
- A technique used to trick computer users into revealing personal or financial information. a common online phishing scam starts with an e-mail message that appears to come from a trusted source but actually directs recipients to provide information to a fraudulent web site. phishing
- A social engineering technique in which the attacker masquerades as a legitimate website or communication in order to acquire sensitive information, such as passwords or credit card information. phishing messages can arrive via email, sms, tweets, instant messages, qr codes, or social media status updates. phishing emails are also used as a delivery method for ransomware that exhorts users to click on an attachment or url where malicious code encrypts their files in a matter of seconds. there are a number of techniques which can be used to help identify whether a suspicious email is a phishing attempt, such as examining the email headers, but there is no silver bullet. one of the safest ways to check the authenticity of a suspicious email is to contact the sender by phoning them – an old-fashioned solution to a modern problem.
|
|
Phishing, английский
- A technique used to trick computer users into revealing personal or financial information. a common online phishing scam starts with an e-mail message that appears to come from a trusted source but actually directs recipients to provide information to a fraudulent web site. phishing
- A social engineering technique in which the attacker masquerades as a legitimate website or communication in order to acquire sensitive information, such as passwords or credit card information. phishing messages can arrive via email, sms, tweets, instant messages, qr codes, or social media status updates. phishing emails are also used as a delivery method for ransomware that exhorts users to click on an attachment or url where malicious code encrypts their files in a matter of seconds. there are a number of techniques which can be used to help identify whether a suspicious email is a phishing attempt, such as examining the email headers, but there is no silver bullet. one of the safest ways to check the authenticity of a suspicious email is to contact the sender by phoning them – an old-fashioned solution to a modern problem.
Pharming, английский
A attack that directs traffic from a legitimate website to an attack site, often configured so that it very closely resembles the original. for example, a dns server might be hacked and it’s ip routing information is modified to redirect the traffic. the domain name will show correctly in the browser (even though it is a fraudulent site). see also dns cache poisoning.
|
|
|
|
|
|
|
