Odaily星球日报讯 据慢雾 CISO 23pd 于 X 平台发文警示,“注意,已出现最新针对币安用户的短信钓鱼攻击。近期,2 个人同一天收到同样的钓鱼短信,且钓鱼短信竟然出现在币安官方短信的对话线程里,和之前真的官方短信在一个上下文里出现,共享同一通道。更惊人的是,时间跨度相当大,精准伪造了官方短信环境。 目前认为可能的解释是短信通道被钓鱼者利用或劫持。第一条短信确实来自官方号码,但随后却收到诈骗短信,这可能说明: 1. 诈骗分子伪造了官方短信来源(SMS Spoofing) • 他们通过技术手段伪造短信发送号码,使其看起来与官方号码一致,让钓鱼短信混入官方对话线程。 2. 他们利用短信网关漏洞或供应链攻击 • 诈骗者可能攻击了短信网关,或利用运营商/第三方短信服务商的安全漏洞,成功将钓鱼短信嵌入官方通道。 • 甚至可能有不良短信供应商合作,直接伪造官方短信回复,让用户难以分辨真伪。 请币安官方查询下问题所在,同时请大家请提高安全意识、注意资金安全。”
Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.