Phishing sites targeting micro-signal to the public, complaints you obtain password-micro, micro-public accounts, stolen-IT information
On March 21, recently some micro-operators, public encounter a new way of public accounts, stolen: your app public complaints, and complaints of problems described as a phishing site, when you click on the link in your browser after you fill in the account and password, your public number was stolen.
According to official identification app, the app without opening account protection, public. At present, the relevant departments have begun to intercept such malicious links, allegedly stolen, micro-credit account of the public security system is already turned on.
According to reports, this is a common trick for phishing sites before, is DNS hijacking techniques to solve this problem, WiFi passwords must be encrypted, and intensive, in particular routing administration password.
In order to avoid public account has been stolen, micro team three security methods:
One, take the initiative to open account protection. Login app Platform-Settings-Security Center-risk operation of the public protection;
Second, do not log on using an unofficial platform app public accounts, to avoid the disclosure and account data, confirm the micro-the official address;
Third, try not to set the same password as the login e-mail accounts or other platform, password setting is also not to be too simple.
Small series of micro-letter would also like to remind the public operator:
1, recent news about the complaint class with caution;
2, not enter account password unknown sites;
3 push sweeping protection, open to the public.
钓鱼网站瞄准
微信公众号,用投诉引你上钩骗取密码 -
微信,
微信公众帐号,盗号 - IT资讯
3月21日消息,近日部分微信公众号运营者遇到一种新型的公众帐号盗号方式:先投诉你的微信公众号,然后将投诉的问题描述为一个钓鱼网站,当你点击该链接后在浏览器填写帐户和密码,你的公众号就被盗了。
据微信官方查验,中招的微信公众号都没有开启帐号保护。目前,相关部门已经开始对此类恶意链接进行拦截,涉嫌盗号的微信公众帐号安全保护系统已经开启。
据报道,这种方式是以前电商钓鱼网站的常用伎俩,属于dns劫持技术,要解决这个问题,wifi密码一定要加密,而且是高强度的,特别是路由的管理密码。
为了避免公众帐号被盗,微信团队介绍了三招防盗方法:
一,主动开启帐号保护。登录微信公众平台—设置—安全中心—风险操作保护;
二,不使用非官方的平台登录微信公众帐号,避免泄露帐号数据,确认微信官方地址;
三,尽量不要设置与登录e-mail帐号或其他平台相同的密码,密码设置也不要过于简单。
小编也在此也提醒各位微信公众号运营者:
1、近期有关投诉类的消息要谨慎处理;
2、不要在不明网站输入帐号密码;
3、开启公众号的推送扫码保护。