當心收到" You've received a greeting ecard" 的電子郵件
時常會收到主旨為 " You've received a greeting ecard" 的郵件,以往都是當垃圾郵件直接刪掉。但今天想一探究竟於是將郵件研究一下,內容如下:
*****************************************************************************************
Good day.
You have received an eCard
To pick up your eCard, choose from any of the following options:
Click on the following link (or copy & paste it into your web browser):
http://flywell-travel.com/ecards.exe (註:本網址超連結已取消)
Your card will be aviailable for pick-up beginning for the next 30 days.
Please be sure to view your eCard before the days are up!
We hope you enjoy you eCard.
Thank You!
*****************************************************************************************
這內容看來好像真有那麼一回事,原本想按下文中的超連結看看是哪位老朋友來問候,但仔細看這個網址最後是 .exe, 它會連結到一個執行檔,這就奇怪了,(記得以前電子賀卡很流行的時候大多是連結到一個網站,輸入密碼即可得到賀卡)而郵件最下方有一個網址http://www.greetingcard.org 看似一個合法的賀卡機構,心想進網站應該不致於中毒吧,於是點進去看看。
這還真是一個名為GREETING CARD的網站,而且它的首頁還有一篇名為”E-Card Scam Alert"(電子賀卡騙局警示)的公告。由於在這篇文章中學到不少專用術語,因此在此向大家翻譯解說一番,希望能讓大家了解如何分辯電子賀卡的真偽:
Beware of fraudulent e-mails claiming you’ve received an electronic greeting card from an unnamed individual, someone you don’t know, or a generic friend...classmate...family member...etc. 小心詐騙電子郵件聲稱你有一封來自未署名,不認識的人,朋友,同學或家人等等的電子賀卡。 這些假的電子郵件被設計成讓你相信它們與合法電子賀卡發行機構或e-card網站有相關聯。 Instead, they are part of an Internet “phishing” scam designed to introduce a virus or malicious software into your computer. Millions of these fraudulent e-mails have been sent to consumers and businesses around the country in recent months. 其實不然,它們是一種網路釣魚的騙局,以此引誘你將病毒或惡意程式執行至你的電腦中,近幾個月來這些詐騙電子郵件已發送至世界各地的個人及商業電腦的使用者。 The scam e-mails…which often look very legitimate… instruct you to click on a link in the e-mail message to collect or view your e-card. Clicking on the link can introduce a virus or malicious software into your computer. 這些詐騙電子郵件...通常看起來合法....它會指示你去點擊文件中的連結以取得或瀏覽你的電子賀卡, 然而點擊連結其實是將病毒或惡意程式執行至你的電腦中 A legitimate e-card notification will always include the full name or personal e-mail address of the sender. The sender will never be identified by a generic term such as a “friend” or “family member.” 一個合法的e-card通知通常會註明發送者的全名或電子郵件地址,不可能以”某某朋友”或”某某家人”做為發送者來唬哢你。 Unless you recognize the full name or personal e-mail address of the sender, the e-mail is fraudulent and should be immediately deleted. Do not click on the link. 除非你可以辨識發送者的全名及電子郵件地址,否則該郵件一定是詐騙,請務必馬上刪除,不要點擊任何連結! 詳細原文資料請參閱http://www.greetingcard.org(合法e-card網站) E-card Scam Alert 電子賀卡騙局警示
These false e-mails are designed to fool you into thinking they involve legitimate greeting card publishers or e-card websites.How The Scam Works 這騙局如何運作?
How to Protect Yourself 如何自我保護?
All legitimate e-card publishers provide a way to collect an e-card directly from their websites, avoiding the use of potentially fraudulent links that can introduce a virus into your computer.
If you have the slightest doubt that the e-card is legitimate, do not click on the link. Instead go directly to the card publisher’s website to safely retrieve your e-card. (Click here for instructions).