我们收到了一封有趣的垃圾邮件电子邮件,该电子邮件(故意或无意)可能会让人们思考当前的国际危机。保持警惕将在未来几天和几周内支付股息,因为以下肯定会随之而来。

不寻常的登录活动detected?

The email’s subject line, “Microsoft account unusual sign-in activity”, is always guaranteed to attract some attention. It continues:

不寻常的登录活动

我们发现有关Microsoft帐户最近登录的一些与众不同的东西

登录详细信息

Country/region: Russia/Moscow

IP地址:

日期:2022年2月26日星期六02:31:23 +0100

平台:Kali Linux

浏览器:Firefox

A user from Russia/Moscow just logged into your account from a new device, If this wasn’t you, please report the user. If this was you, we’ll trust similar activity in the future.

Report the user

Thanks,

The Microsoft account team

The mail provides a button to “report the user”, and an unsubscribe option. Should the recipient click the button, they’re not forwarded to a report page. Instead, it’s a Mailto: URI which opens a fresh email with a pre-filled message to be sent to a specific email account.

在这种情况下,电子邮件的主题行是“报告用户”,而Phisher的邮件地址声称是Microsoft帐户保护的某种形式。他们还设法拼写错误的帐户 - “ acount”。

Don’t reply: report and delete

发送答复的人几乎可以肯定会收到登录详细信息以及可能的付款信息的请求,这很可能是通过虚假网络钓鱼页面的。骗子也很有可能将所有内容全部保留在通过电子邮件中的通信。无论哪种方式,人们都会因失去对账户的控制而面临风险。最好的办法是不回复,并删除电子邮件。

Is this mail deliberately or accidentally referencing world events?

We have to be very clear here that anybody could have put this mail together, and may well not have anything to do with Russia directly. This is the kind of thing anyone anywhere can piece together in ten minutes flat, and mails of this nature have beenbouncing aroundforyears.

但是,鉴于当前的世界活动,看到“来自俄罗斯的异常登录活动”将使大多数人都做双重的选择,因此,这是完美的垃圾诱饵材料。

While the mail explicitly targets Microsoft account holders, Outlook is flagging this missive and dropping it directly into the spam box. This probably isn’t something the mail creators need, quite frankly. However, this is great news for everybody else.

Miss it, miss out

Trying to panic people into hitting a button or click a link is an ancient social engineering tactic, but it sticks around because it works. We’ve likely all received a “bank details invalid”, or “mysterious payment rejected” message at one point or another.

Depending on personal circumstance and/or what’s happening in the world at any given moment, one person’s “big deal” is another one’s “oh no, my stuff”. That’s all it may take for some folks to lose their login, and this mail is perhaps more salient than most for the time being.