打开“同事”发来的文件后电脑瞬间瘫痪 警惕新型钓鱼攻击
打开“同事”发来的文件后电脑瞬间瘫痪 警惕新型钓鱼攻击
    • 关于急功好利网
    ENGLISH
    EnglishEspañolFrançaisعربىРусский язык日本語한국어DeutschPortuguês
    新华报刊
    新华每日电讯经济参考瞭望半月谈中证报上证报中国记者中国名牌中国传媒科技环球瞭望东方周刊参考消息新华出版社财经国家周刊
    地方频道
    襄樊张掖河源长沙临沂扬州衢州六盘水湘潭茂名营口阳泉重庆昆明驻马店厦门白山绍兴濮阳泰安聊城南昌哈尔滨淄博阜新黄山湘潭济宁金华保山
    承建网站
    中国政府网中国文明网国家国际发展合作署中国雄安官网中国互联网联合辟谣平台中国记协网国家公祭网科普中国国家能源局网站国家信访局网站中国禁毒网
    网站无障碍
    客户端
    手机版
    站内搜索
    网络举报专区
    新华通讯社主办公司官网股票代码:603888
    学习进行时高层时政人事国际财经网评港澳台湾思客智库全球连线教育科技科普体育文化书画健康军事访谈视频图片政务中央文件
    金融汽车食品人居生活信息化数字经济学术中国乡村振兴溯源中国城市旅游能源会展彩票娱乐时尚悦读公益一带一路亚太网上市公司文化产业
    急功好利网>> 正文
    2026-04-17 18:09:27
    来源:急功好利网

    打开“同事”发来的文件后电脑瞬间瘫痪 警惕新型钓鱼攻击

    字体:

    打开“同事”发来的文件后电脑瞬间瘫痪 警惕新型钓鱼攻击

    2026-04-17 18:09:27 来源:急功好利网
    \u003cdiv class=\"rich_media_content\"\u003e\u003c!--NO_AD_ERROR_3_1--\u003e\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e一封“HR紧急通知”邮件,请你立即打开确认。\u003c/p\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e一条来自“IT支持”的短信:“您的AI助手订阅即将过期,点击续订以免服务中断。”\u003c/p\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e一个伪装成同事的账号私信你:“请于今日下班前,点击链接填写本次申报表。”\u003c/p\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e这些看似平常、合理的信息,可能是当下十分猖獗的网络攻击手段——新型钓鱼攻击的典型伪装。\u003c/p\u003e\n\u003cp\u003e\u003c!--IMG_0--\u003e\u003c/p\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e随着大数据、人工智能技术的快速发展,网络钓鱼攻击花样翻新,呈现智能化、精准化、隐蔽化趋势,针对政府单位、大型央国企、医疗机构等进行大规模攻击,已造成不同程度的信息泄露、经济损失和安全威胁。\u003c/p\u003e\n\u003cp\u003e\u003c!--IMG_1--\u003e\u003c/p\u003e\n\u003cdiv class=\"cms-cke-widget-title-normal-1 cms-cke-widget-title-tpl cms-cke-widget-title-wrapper cms-cke-widget-tpl\" data-key=\"title-normal-1\" data-reactroot=\"\" style=\"align-items: center; box-sizing: border-box; display: flex; font-size: 19px; font-weight: bold; justify-content: center; margin-bottom: 20px; margin-top: 28px; width: 100%\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-container\" style=\"background-color: #001966; display: inline-block; margin-top: 4px; padding: 2px; position: relative; z-index: 9\"\u003e\n\u003cdiv class=\"out\" style=\"border: 1px solid #001966; box-sizing: border-box; display: inline-block; height: 100%; left: 4px; position: absolute; top: -4px; width: 100%\"\u003e \u003c/div\u003e\n\u003cdiv style=\"position: relative\"\u003e\n\u003cdiv class=\"title-normal-1-text-border\" style=\"border: 1px solid #ffffff; box-sizing: border-box; height: 199%; left: 0; position: absolute; top: 0; transform: scale(0.5); transform-origin: 0 0; width: 199%\"\u003e \u003c/div\u003e\n\u003cdiv class=\"cms-cke-widget-title-wrap title-normal-1-text\" style=\"color: #ffffff; display: inline-block; line-height: 26px; padding: 1px 12px; position: relative; text-align: center; word-break: break-all\"\u003e\n\u003cp\u003e新型钓鱼攻击\u003cbr/\u003e\n有哪些特点\u003c/p\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003cdiv class=\"cms-cke-widget-title-number-2 cms-cke-widget-title-tpl cms-cke-widget-title-wrapper cms-cke-widget-tpl\" data-key=\"title-number-2\" data-reactroot=\"\" style=\"align-items: center; display: flex; font-size: 19px; font-weight: bold; justify-content: flex-start; margin-bottom: 20px; margin-top: 28px; width: 100%\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-container\" style=\"display: flex; position: relative\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-text-wrapper title-number-2-text-wrapper\" style=\"align-items: center; display: flex; justify-content: flex-start\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-nubmer-wrapper\" style=\"align-items: center; background: #00269a; box-sizing: border-box; color: #ffffff; display: flex; flex-shrink: 0; font-size: 20px; height: 100%; justify-content: center; line-height: 100%; width: 30px\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-nubmer\" style=\"min-width: 4px\"\u003e1\u003c/div\u003e\n\u003c/div\u003e\n\u003cdiv class=\"cms-cke-widget-title-wrap title-number-2-text\" style=\"background: #e6e8ef; box-sizing: content-box; color: #001966; display: inline-block; line-height: 26px; min-width: 4px; overflow: hidden; padding: 2px 10px 2px 18px; position: relative; text-align: center; word-break: break-all\"\u003e\n\u003cp\u003e人工智能技术融合与多模态渗透\u003c/p\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e攻击者通过生成式人工智能技术实现语义伪装升级,比如,钓鱼诱饵高度贴合“放假安排”“所得税汇算清缴”等我国社会和经济活动的周期性事件,甚至伪造政府部门通知,增加用户紧迫感和好奇心。与此同时,攻击载体也从传统文本扩展至语音、视频、二维码等多模态形式。\u003c!--NO_AD_0--\u003e\u003c!--EOP_0--\u003e\u003c/p\u003e\u003c!--PARAGRAPH_0--\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e2024年1月,江苏无锡某公司财务人员点击群聊里的“2024年1月税务稽查局企业搜查名单”链接,导致电脑被木马病毒入侵且被远程控制、窃密。\u003c/p\u003e\n\u003cp\u003e\u003c!--IMG_2--\u003e\u003c/p\u003e\n\u003cdiv class=\"cms-cke-widget-title-number-2 cms-cke-widget-title-tpl cms-cke-widget-title-wrapper cms-cke-widget-tpl\" data-key=\"title-number-2\" data-reactroot=\"\" style=\"align-items: center; display: flex; font-size: 19px; font-weight: bold; justify-content: flex-start; margin-bottom: 20px; margin-top: 28px; width: 100%\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-container\" style=\"display: flex; position: relative\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-text-wrapper title-number-2-text-wrapper\" style=\"align-items: center; display: flex; justify-content: flex-start\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-nubmer-wrapper\" style=\"align-items: center; background: #00269a; box-sizing: border-box; color: #ffffff; display: flex; flex-shrink: 0; font-size: 20px; height: 100%; justify-content: center; line-height: 100%; width: 30px\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-nubmer\" style=\"min-width: 4px\"\u003e2\u003c/div\u003e\n\u003c/div\u003e\n\u003cdiv class=\"cms-cke-widget-title-wrap title-number-2-text\" style=\"background: #e6e8ef; box-sizing: content-box; color: #001966; display: inline-block; line-height: 26px; min-width: 4px; overflow: hidden; padding: 2px 10px 2px 18px; position: relative; text-align: center; word-break: break-all\"\u003e\n\u003cp\u003e精准画像与供应链渗透\u003c/p\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e当前,钓鱼攻击的精准度正在发生质的飞跃,传统的大规模群发式钓鱼邮件已式微,取而代之的是利用开源情报构建目标人物行为图谱,比如,针对科研人员发送“学术会议通知”,针对财务人员伪造“紧急付款指令”,识别难度呈指数级上升。\u003c!--AI_MID_AD_0--\u003e\u003c/p\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e更值得警惕的是,攻击者已不满足于单点突破,而将目光投向供应链的薄弱环节。西北能源基地DNS篡改事件中,某境外组织入侵设备供应商系统,在合法软件更新中植入恶意代码,借此篡改能源基地核心路由器的DNS配置,最终引发区域性服务中断。\u003c/p\u003e\n\u003cp\u003e\u003c!--IMG_3--\u003e\u003c/p\u003e\n\u003cdiv class=\"cms-cke-widget-title-number-2 cms-cke-widget-title-tpl cms-cke-widget-title-wrapper cms-cke-widget-tpl\" data-key=\"title-number-2\" data-reactroot=\"\" style=\"align-items: center; display: flex; font-size: 19px; font-weight: bold; justify-content: flex-start; margin-bottom: 20px; margin-top: 28px; width: 100%\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-container\" style=\"display: flex; position: relative\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-text-wrapper title-number-2-text-wrapper\" style=\"align-items: center; display: flex; justify-content: flex-start\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-nubmer-wrapper\" style=\"align-items: center; background: #00269a; box-sizing: border-box; color: #ffffff; display: flex; flex-shrink: 0; font-size: 20px; height: 100%; justify-content: center; line-height: 100%; width: 30px\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-nubmer\" style=\"min-width: 4px\"\u003e3\u003c/div\u003e\n\u003c/div\u003e\n\u003cdiv class=\"cms-cke-widget-title-wrap title-number-2-text\" style=\"background: #e6e8ef; box-sizing: content-box; color: #001966; display: inline-block; line-height: 26px; min-width: 4px; overflow: hidden; padding: 2px 10px 2px 18px; position: relative; text-align: center; word-break: break-all\"\u003e\n\u003cp\u003e隐蔽性提升与对抗性增强\u003c/p\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e即时通信软件的高频使用,让攻击者找到了更隐蔽的渗透路径。与邮件相比,即时消息更具紧迫感和随意性,人们往往在碎片时间快速浏览,降低了审慎核查的意愿。攻击者常以“紧急”“帮个忙”等话术制造心理压力,诱导接收者在未经验证的情况下执行操作。\u003c/p\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e此外,攻击者还通过“时间对抗”技术延迟钓鱼页面加载以绕过检测。具体来说,攻击者发送诱导邮件,用户初次访问时,页面会以“当前非工作时间”等话术提示在特定时段(如次日早7点后)操作,当用户在指定时间进行操作,信息就会被窃取。传统检测技术因初次检测无异常且不会延时跟踪访问,误判其为正常内容,钓鱼攻击因此得以实施。\u003c!--NO_AD_1--\u003e\u003c!--EOP_1--\u003e\u003c/p\u003e\u003c!--PARAGRAPH_1--\u003e\n\u003cp\u003e\u003c!--IMG_4--\u003e\u003c/p\u003e\n\u003cdiv class=\"cms-cke-widget-title-normal-1 cms-cke-widget-title-tpl cms-cke-widget-title-wrapper cms-cke-widget-tpl\" data-key=\"title-normal-1\" data-reactroot=\"\" style=\"align-items: center; box-sizing: border-box; display: flex; font-size: 19px; font-weight: bold; justify-content: center; margin-bottom: 20px; margin-top: 28px; width: 100%\"\u003e\n\u003cdiv class=\"cms-cke-widget-title-container\" style=\"background-color: #001966; display: inline-block; margin-top: 4px; padding: 2px; position: relative; z-index: 9\"\u003e\n\u003cdiv class=\"out\" style=\"border: 1px solid #001966; box-sizing: border-box; display: inline-block; height: 100%; left: 4px; position: absolute; top: -4px; width: 100%\"\u003e \u003c/div\u003e\n\u003cdiv style=\"position: relative\"\u003e\n\u003cdiv class=\"title-normal-1-text-border\" style=\"border: 1px solid #ffffff; box-sizing: border-box; height: 199%; left: 0; position: absolute; top: 0; transform: scale(0.5); transform-origin: 0 0; width: 199%\"\u003e \u003c/div\u003e\n\u003cdiv class=\"cms-cke-widget-title-wrap title-normal-1-text\" style=\"color: #ffffff; display: inline-block; line-height: 26px; padding: 1px 12px; position: relative; text-align: center; word-break: break-all\"\u003e\n\u003cp\u003e新型钓鱼攻击该如何防?\u003c/p\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e\u003cstrong data-source=\"cke\"\u003e个人层面:\u003c/strong\u003e强化生物特征与行为防护。避免在社交媒体、不明链接上传人脸、声纹、指纹等生物信息,可使用手机PIN码+硬件密钥组合验证,降低生物数据泄露风险;不随意点击陌生链接、附件,不轻信社交媒体传播的“工作通知”“放假安排”及相关工作文件和链接,应通过官方渠道进行核实。\u003c!--NO_AD_2--\u003e\u003c!--EOP_2--\u003e\u003c/p\u003e\u003c!--PARAGRAPH_2--\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e\u003cstrong data-source=\"cke\"\u003e机构层面:\u003c/strong\u003e构建精细化防范机制。对供应链开展穿透式安全监管,对关键信息基础设施供应商实施代码审计和漏洞溯源;对数据实施“加密+脱敏+访问控制”三重防护,使用杀毒软件、防火墙、邮件过滤工具;启用多因素认证,将可疑文件上传至国家病毒协同分析平台进行安全检测,并保持防病毒软件实时监控功能开启。\u003c!--NO_AD_3--\u003e\u003c!--EOP_3--\u003e\u003c/p\u003e\u003c!--PARAGRAPH_3--\u003e\n\u003cp\u003e\u003c!--IMG_5--\u003e\u003c/p\u003e\n\u003cp class=\"text_align-justify\" data-source=\"cke\"\u003e\u003cstrong data-source=\"cke\"\u003e社会层面:\u003c/strong\u003e强化安全保密意识培养。采用线下宣讲、情景短剧、游戏互动等方式,围绕保密法规、网络钓鱼、信息保护等方面开展安全保密宣教活动;定期开展钓鱼邮件演练,组织模拟攻击沉浸式培训;建立钓鱼邮件举报奖励机制,开通多渠道举报通道,筑牢网络安全“防火墙”。\u003c!--NO_AD_4--\u003e\u003c!--EOP_4--\u003e\u003c/p\u003e\u003c!--PARAGRAPH_4--\u003e\n\n\n\u003cstyle\u003e.rich_media_content{--news-tabel-th-night-color: #444444;--news-font-day-color: #333;--news-font-night-color: #d9d9d9;--news-bottom-distance: 22px}.rich_media_content p:not([data-exeditor-arbitrary-box=image-box]){letter-spacing:.5px;line-height:30px;margin-bottom:var(--news-bottom-distance);word-wrap:break-word}.rich_media_content .qn-editor-copy p:not([data-exeditor-arbitrary-box=image-box]){letter-spacing:unset;line-height:unset;margin-bottom:unset;word-wrap:unset}.rich_media_content{color:var(--news-font-day-color);font-size:18px}@media(prefers-color-scheme:dark){body:not([data-weui-theme=light]):not([dark-mode-disable=true]) .rich_media_content p:not([data-exeditor-arbitrary-box=image-box]){letter-spacing:.5px;line-height:30px;margin-bottom:var(--news-bottom-distance);word-wrap:break-word}body:not([data-weui-theme=light]):not([dark-mode-disable=true]) .rich_media_content .qn-editor-copy p:not([data-exeditor-arbitrary-box=image-box]):not(.qn-editor-copy){letter-spacing:unset;line-height:unset;margin-bottom:unset;word-wrap:unset}body:not([data-weui-theme=light]):not([dark-mode-disable=true]) .rich_media_content{color:var(--news-font-night-color)}}.data_color_scheme_dark .rich_media_content p:not([data-exeditor-arbitrary-box=image-box]){letter-spacing:.5px;line-height:30px;margin-bottom:var(--news-bottom-distance);word-wrap:break-word}.data_color_scheme_dark .rich_media_content .qn-editor-copy p:not([data-exeditor-arbitrary-box=image-box]){letter-spacing:unset;line-height:unset;margin-bottom:unset;word-wrap:unset}.data_color_scheme_dark .rich_media_content{color:var(--news-font-night-color)}.data_color_scheme_dark .rich_media_content{font-size:18px}.rich_media_content p[data-exeditor-arbitrary-box=image-box]{margin-bottom:11px}.rich_media_content\u003ediv:not(.qnt-video),.rich_media_content\u003esection{margin-bottom:var(--news-bottom-distance)}.rich_media_content hr{margin-bottom:var(--news-bottom-distance)}.rich_media_content .link_list{margin:0;margin-top:20px;min-height:0!important}.rich_media_content blockquote{background:#f9f9f9;border-left:6px solid #ccc;margin:1.5em 10px;padding:.5em 10px}.rich_media_content blockquote p{margin-bottom:0!important}.data_color_scheme_dark .rich_media_content blockquote{background:#323232}@media(prefers-color-scheme:dark){body:not([data-weui-theme=light]):not([dark-mode-disable=true]) .rich_media_content blockquote{background:#323232}}.rich_media_content ol[data-ex-list]{--ol-start: 1;--ol-list-style-type: decimal;list-style-type:none;counter-reset:olCounter calc(var(--ol-start,1) - 1);position:relative}.rich_media_content ol[data-ex-list]\u003eli\u003e:first-child::before{content:counter(olCounter,var(--ol-list-style-type)) '. ';counter-increment:olCounter;font-variant-numeric:tabular-nums;display:inline-block}.rich_media_content ul[data-ex-list]{--ul-list-style-type: circle;list-style-type:none;position:relative}.rich_media_content ul[data-ex-list].nonUnicode-list-style-type\u003eli\u003e:first-child::before{content:var(--ul-list-style-type) ' ';font-variant-numeric:tabular-nums;display:inline-block;transform:scale(0.5)}.rich_media_content ul[data-ex-list].unicode-list-style-type\u003eli\u003e:first-child::before{content:var(--ul-list-style-type) ' ';font-variant-numeric:tabular-nums;display:inline-block;transform:scale(0.8)}.rich_media_content ol:not([data-ex-list]){padding-left:revert}.rich_media_content ul:not([data-ex-list]){padding-left:revert}.rich_media_content table{display:table;border-collapse:collapse;margin-bottom:var(--news-bottom-distance)}.rich_media_content table th,.rich_media_content table td{word-wrap:break-word;border:1px solid #ddd;white-space:nowrap;padding:2px 5px}.rich_media_content table th{font-weight:700;background-color:#f0f0f0;text-align:left}.rich_media_content table p{margin-bottom:0!important}.data_color_scheme_dark .rich_media_content table th{background:var(--news-tabel-th-night-color)}@media(prefers-color-scheme:dark){body:not([data-weui-theme=light]):not([dark-mode-disable=true]) .rich_media_content table th{background:var(--news-tabel-th-night-color)}}.rich_media_content .qqnews_image_desc,.rich_media_content p[type=om-image-desc]{line-height:20px!important;text-align:center!important;font-size:14px!important;color:#666!important}.rich_media_content div[data-exeditor-arbitrary-box=wrap]:not([data-exeditor-arbitrary-box-special-style]){max-width:100%}.rich_media_content .qqnews-content{--wmfont: 0;--wmcolor: transparent;font-size:var(--wmfont);color:var(--wmcolor);line-height:var(--wmfont)!important;margin-bottom:var(--wmfont)!important}.rich_media_content .qqnews_sign_emphasis{background:#f7f7f7}.rich_media_content .qqnews_sign_emphasis ol{word-wrap:break-word;border:none;color:#5c5c5c;line-height:28px;list-style:none;margin:14px 0 6px;padding:16px 15px 4px}.rich_media_content .qqnews_sign_emphasis p{margin-bottom:12px!important}.rich_media_content .qqnews_sign_emphasis ol\u003eli\u003ep{padding-left:30px}.rich_media_content .qqnews_sign_emphasis ol\u003eli{list-style:none}.rich_media_content .qqnews_sign_emphasis ol\u003eli\u003ep:first-child::before{margin-left:-30px;content:counter(olCounter,decimal) ''!important;counter-increment:olCounter!important;font-variant-numeric:tabular-nums!important;background:#37f;border-radius:2px;color:#fff;font-size:15px;font-style:normal;text-align:center;line-height:18px;width:18px;height:18px;margin-right:12px;position:relative;top:-1px}.data_color_scheme_dark .rich_media_content .qqnews_sign_emphasis{background:#262626}.data_color_scheme_dark .rich_media_content .qqnews_sign_emphasis ol\u003eli\u003ep{color:#a9a9a9}@media(prefers-color-scheme:dark){body:not([data-weui-theme=light]):not([dark-mode-disable=true]) .rich_media_content .qqnews_sign_emphasis{background:#262626}body:not([data-weui-theme=light]):not([dark-mode-disable=true]) .rich_media_content .qqnews_sign_emphasis ol\u003eli\u003ep{color:#a9a9a9}}.rich_media_content h1,.rich_media_content h2,.rich_media_content h3,.rich_media_content h4,.rich_media_content h5,.rich_media_content h6{margin-bottom:var(--news-bottom-distance);font-weight:700}.rich_media_content h1{font-size:20px}.rich_media_content h2,.rich_media_content h3{font-size:19px}.rich_media_content h4,.rich_media_content h5,.rich_media_content h6{font-size:18px}.rich_media_content li:empty{display:none}.rich_media_content ul,.rich_media_content ol{margin-bottom:var(--news-bottom-distance)}.rich_media_content div\u003ep:only-child{margin-bottom:0!important}.rich_media_content .cms-cke-widget-title-wrap p{margin-bottom:0!important}\u003c/style\u003e\u003c/div\u003e
    【纠错】
    【责任编辑:好好打球梁辉】
    深度观察