Mobile malware invasions of privacy, users are more easy to hit in big cities-a malicious program, users ' privacy-IT information
College student Xu Yuyu taken in cases of sudden death after a heart-wrenching, however, a similar event has been staged. A 78 year old living alone recently encountered new Telecom fraud, deception 11.56 million Yuan, according to the results of police investigations, the money within a few days had been scattered to 593 accounts.
Personal information is stolen during the transmission process? What are malware, phishing site is currently technical trends, how do we prevent it? Guangzhou Municipal Association for science and technology, Guangzhou daily, and co-sponsored by the national Office of scientific quality in Guangzhou, "Guangzhou Science Forum" the 118th issue began yesterday, Vice President of South China University of technology school of computer science, Deputy Secretary-General of the Guangdong society of computer Professor Xu Yong around "mobile security" the theme for the general public to clear up doubts.
It is understood that, as of June 2016, China's mobile phone users reached 656.37 million people, mobile Internet users total Internet users 92.5%. Mobile Internet information security has become a major problem.
How do we ensure network security? Yesterday, the 118th "Guangzhou Science Forum" lecture, Vice President of South China University of technology school of computer science, Deputy Secretary-General of the Guangdong society of computer Professor Xu Yong said, mobile Internet information security risks include malware, phishing sites, harassing phone calls, SMS spam, online fraud, and big cities including Beijing, Guangzhou, became targets of malicious programs.
Fraud: the disclosure of personal information
Today's Telecom fraud form one after another. These events not only in the heartbreaking news, also appears in the us. Xu Yong told the audience he encountered such a thing.
"One day 3 years ago, I suddenly received an admissions graduate from Wuhan, the new phone. The graduate student said, just someone to send text messages to him, said teacher in Wuhan on business, cell phone and wallet were stolen, urgent, to transfer 50,000 yuan to an account in an emergency. The graduate students feel free to call me, discern, or he'll become a victim. ”
Xu Yong, said fraud is one of the basis of disclosure of personal information, and there are ways to leak a lot. For example, to bank accounts, school registration, handling a variety of businesses and so on, have to fill out numerous forms, which once saved incorrectly, or the relevant Department's server was hacked, the personal information will fall into the wrong hands.
Xu Yong, said many people like being "rub family of network", where all love free WiFi near the search. In fact, illegal interception of personal data through WiFi base station information. In cases that cannot be sure to use the WiFi security, better not use online banking payment applications involving sensitive information.
In the process of cell phone use, if the mobile phone has no signal, when troubleshooting signal problems and cell phone after a failure, to immediately call the carrier's customer service telephone SIM cards are being made, requires operators to assist in handling. When you get out, and do not use bank cards, identity cards and phones in the same place. If lost, others use paid software password function to change the password, and highly dangerous.
Hidden network 1: malware rampant
Mobile Internet refers to a malicious program running on the mobile terminals, including Smartphone executable files, programs, modules, or program segments. The use of malicious programs including bugging users call, steal information from a user, destroy user data, unauthorized use of service, send spam, pushing advertising or fraudulent information.
Xu Yong said the malicious program has become prominent mobile Internet security risks.
Malware trends
First, means more subtle attack. Specific performance in high strength encryption code confusion, malicious code masquerading as a resource file and dynamically load hidden more deeply.
Second is the recognition more difficult to increase. A large number of mobile malware programs small simple programming language of production, aims to increase the difficulty of security software.
Third, closely associated with the social networking site. A large number of mobile malware using the third party social networking site do springboard it as privacy back to the server, stealing mobile phone users ' personal information.
Beijing Guangzhou is easier to "recruit" of the city
2015 Android malware infections top ten cities, Beijing 6.428 million passengers, 1.863 million passengers in Guangzhou, Nanjing reached 1.646 million people. Also can be seen from the data, during the year and the end of each year, are malicious programs through "peak".
Network vulnerabilities 2: phishing site stealing information
Phishing usually disguised as banking and e-commerce, stealing bank account numbers, passwords and other private information submitted by the user's Web site. Phishing site's main purpose is to cheat the user Bank or credit card account numbers, passwords and other private information. Phishing site is divided into three major categories, one is pretending to be a merchant Web site or brand website to provide false information, the second is fake identities to defraud users personal information, third, inducing users to download Trojan horse program.
Phishing trends
Micro letter has been hit hard. Require special attention is that use of mobile social networking tools to disseminate fraudulent information is a growing trend. Especially in terms of new fraudulent around micro-letter, a social networking tool, was derived from the public, fraud, micro cash fraud, AA bonus, public fraud, micro-game fraud. Transferability of the micro shop, many cell phone users and also become an important field of complaints. People most often use, and relatively more trusted social software to commit fraud is often more confusing.
Xu Yong warned that even micro-credit, QQ friends, acquaintances sent to QR codes, Web site links, be careful, do not open, but don't recommend installation of new applications in the install link.
SMS vulnerability types more gullible
Xu Yong introduction, illegal and fraudulent text messages also are divided into several types.
First is the most common type of "fraud" . For example, "Hello, my is landlord, now in the field, please hit my wife rent account, play back information." Xu Yong reminders, collection type for text messages, be sure to hit telephone communications after confirmation by the parties.
The second type is superstition . Like logs on a "big" sites can put people out of misery and fortune telling by name, and so on. Some users tend to click on these curiosity-driven Web site.
The third is pretending to be a discount . Claiming to be such and such site to the flagship store "red envelopes" or coupons attached website link in question.
Fourth is pretending to be a bank , operator type. For example, "ABC notice: I will be in six o'clock after annual charges before 1800, if in doubt please enquiry number. "Such as" electronic password failure "," upgrade u shield "and so on, are terms commonly used by criminals to defraud.
Fifth fake courts . This is the most easy to hit one of the user. For example, "notification: you immediately, please call our disarmament agreement that you signed the contract. If you have I lifted this breach of contract you will bear full legal responsibility and punishment for breach of 100,000! "Many users panic and call the phone number in question.
手机恶意程序侵犯隐私,大城市用户更容易中招 - 恶意程序,用户隐私 - IT资讯
准大学生徐玉玉受骗后猝死一案令人痛心,然而,类似的事件还在不断上演。深圳一位78岁独居老人日前遭遇新型电信诈骗,被骗1156万元,根据警方侦查结果,这笔钱几日之内已被分散至593个账户。
个人隐私信息在传输过程中是如何被窃取的?恶意程序、钓鱼网站目前有哪些技术演变趋势,我们应该如何防范?由广州市科协、广州日报社、广州市全民科学素质办共同主办的“广州科普大讲坛”第118期昨日开讲,华南理工大学计算机学院副院长、广东计算机学会副秘书长许勇教授围绕“手机信息安全”这一主题,为公众释疑解惑。
据了解,截至2016年6月,中国手机网民规模达到65637万人,手机网民占总体网民比例92.50%。移动互联网信息安全也随之成为一个重要问题。
我们如何保障网络安全?昨日,第118期“广州科普大讲坛”开讲,华南理工大学计算机学院副院长、广东计算机学会副秘书长许勇教授表示,移动互联网信息安全隐患主要包括恶意程序、钓鱼网站、骚扰电话、垃圾短信、网络诈骗等,包括北京、广州在内的大城市成为恶意程序攻击的目标。
诈骗基础:个人信息泄露
如今的电信诈骗形式层出不穷。这些事件不仅出现在让人痛心的新闻里,也出现在我们身边。许勇告诉听众,他自己也遇到过这样的事情。
“3年前的一天,我突然接到一个来自武汉的、新录取的研究生的电话。这位研究生说,刚刚有人给他发短信,说导师在武汉出差,手机和钱包都被偷了,非常紧急,要转账5万元到一个账户上救急。还好这位研究生及时与我电话联系,辨明真相,否则他就成为一名受害者。”
许勇表示,诈骗的基础之一是个人隐私信息的泄露,而目前泄露的途径有很多。比如,去银行开户、到学校注册、办理各种业务等等,都要填写很多表格,这些信息一旦保存不当,或者相关部门的服务器被黑客攻击,个人信息就会落入不法分子手中。
许勇表示,许多人喜欢当“蹭网族”,走到哪都爱搜索附近的免费wifi使用。实际上,不法分子正是通过一些wifi基站截取个人数据信息。在无法确保所使用的wifi安全的情况下,最好别使用网银支付等涉及敏感信息的应用功能。
在手机使用过程中,如果手机突然没有信号,在排除了信号问题和手机故障后,要立即拨打运营商的客服电话查询SIM卡是否被人补办,要求运营商协助处理。在出门的时候,也不要将银行卡、身份证及手机放在同一个地方。如果一同丢失,他人可使用支付软件的密码找回功能更改密码,危险程度极高。
网络隐患1:恶意软件肆虐
移动互联网恶意程序是指运行于包括智能手机在内的移动终端上的可执行文件、程序模块或程序片段。恶意程序的运用目的包括窃听用户通话、窃取用户信息、破坏用户数据、擅自使用付费业务、发送垃圾信息、推送广告或欺诈信息。
许勇表示,恶意程序目前已经成为移动互联网较为突出的安全隐患。
恶意软件演变趋势
一是攻击手段更加隐蔽。具体表现在代码高强度加密混淆、恶意代码伪装成资源文件而且动态加载隐藏得更深。
二是识别难度更加大。大量手机恶意程序利用小众的简单编程语言进行制作,目的是增加安全软件识别难度。
三是与社交网站关系密切。大量手机恶意程序利用第三方社交网站做跳板,将其作为隐私回传服务器,窃取手机用户个人信息。
北京广州均是容易“中招”的城市
2015年安卓平台恶意程序感染量前十位城市中,北京达到642.8万人次,广州达到186.3万人次,南京达到164.6万人次。从数据还可以看出,每年年头和年尾期间,是恶意程序肆虐的“高峰期”。
网络隐患2:钓鱼网站窃密
钓鱼网站通常指伪装成银行及电子商务,窃取用户提交的银行账号、密码等私密信息的网站。钓鱼网站的主要目的是骗取用户银行或信用卡账号、密码等私人资料。钓鱼网站主要分为三大类,一是冒充电商网站或品牌官网提供虚假购物信息,二是冒充身份骗取用户个人信息,三是诱导用户下载木马病毒程序。
钓鱼网站发展趋势
微信已经成为重灾区。需要特别注意的是,利用手机上社交工具传播的诈骗信息一直呈现不断增长的态势。特别是在新型诈骗手法方面,围绕微信这一社交工具,衍生出了公众号申请诈骗,微信提现诈骗,公众号AA红包诈骗,微信游戏诈骗等。众多良莠不齐的微店,也成为众多手机用户关注和投诉的重要领域。通过人们最经常使用,而且相对比较信任的社交软件来实施诈骗,往往更具迷惑性。
许勇提醒,即使是微信、QQ好友、熟人发来的二维码、网站链接等,也要小心,不要随便打开,更不要随便安装链接中推荐安装的新应用程序。
短信隐患:类型多易上当
许勇介绍,违法诈骗短信同样分为多种类型。
第一种是最常见的“打款诈骗”型。比如“你好,我是房东,现在在外地,请把房租打到我爱人账号上,打完请回信息”。许勇提醒,对于收款类型的短信,一定要和当事人电话沟通确认后再打款。
第二种是封建迷信型。比如登录某“大仙”网站可以让人脱离苦海、通过名字可以算命等。一些用户往往会在好奇心驱动下点击这些网站。
第三种是冒充优惠型。声称是某某网站旗舰店发来的“红包”或者优惠券,后面附了有问题的网站链接。
第四种是冒充银行、运营商型。比如“农业银行通知:我行将在六点之前扣除年费1800元,如有疑问请详询某某号码。”又比如“电子密码器失效”、“U盾升级”等等,均属不法分子常用的诈骗术语。
第五种是假冒公检法型。这也是用户最容易中招的一种。比如“法院通知:请您立即拨打电话与本院解除您签署的某某协议合同。如果您本人今天未解除这份违约合同您将负全部法律责任;并处罚违约金十万元!”不少用户慌起来,就拨打了有问题的电话号码。