訊息
GENERAL.
本校電子郵件信箱近來屢次收到詐騙信件,這是駭客使用假造寄件人詐騙比特幣(BTC)勒索郵件。
通知本校師生與同仁
本校電子郵件信箱近來屢次收到 詐騙信件 ,這是駭客使用假造寄件人詐騙比特幣(BTC)勒索郵件。
此次詐騙信件內容如下:
---- 英文版本詐騙信件內容 ----
Hi, I'm a hacker and programmer, I got access to your account ntpubulletin@mail.ntpu.edu.tw.
Your device was infected with my private malware, because your browser wasn't updated / patched,
in such case it's enough to just visit some website where my iframe is placed to get automatically infected, if you want to find out more - Google: "Drive-by exploitH".
My malware gave me full access to all your accounts, full control over your OS and it was possible for me to spy on you over your webcam.
I collected all your private data, recorded few videos of you (through your webcam) and I RECORDED YOU SATISFYING YOURSELF!!!
I can publish all your private data everywhere, including the darknet, where the very sick people are and the videos of you,
send them to your contacts, post them on social network and everywhere else!
Only you can prevent me from doing this and only I can help you out, there are no traces left,
as I removed my malware after my job was done and this email(s) has been sent from some hacked server...
The only way to stop me, is to pay exactly 727$ in bitcoin (BTC).
It's a very good offer, compared to all that HORRIBLE shit that will happen if you don't pay!
You can easily buy bitcoin on the next services: paxful, coinbase or check for bitcoin ATM near you, or Google for other exchanger.
You can send the bitcoin directly to my wallet, or create your own wallet first here: blockchain com, then receive and send to mine.
My bitcoin wallet is: 15WG3a68ZDPsYyJUkMKQkqwkvWykT74ufB
Copy and paste it, it's (cAsE-sEnSEtiVE)
You got 72 hours time.
As I got access to this email account, I will know if this email has been read.
If you get this email multiple times, it's to make sure that you read it, my mailer script is configured like this and after payment you can ignore it.
Please do not reply to this email. The sender's address is automatically generated to ensure that this email is received.
After receiving the payment, I remove all your data and you can life your live in peace like before.
Next time update your browser before browsing the web!
針對此封信資訊中心建議處理原則 :
(1)檢查個人電腦檔案是否被『加密』
(2)將個人重要檔案備份到外部儲存裝置
(3)webcam的部分,不用的時候可以移除(或用貼紙遮掉)
(4)以上都檢查完畢,此封信件可以忽略
簡易判斷是否為詐騙的原則 :
(1)資訊中心絕對不會跟您要帳號及密碼,試想管理者有權限『重設密碼』又何需跟您要帳密呢?
(2)請認明「ntpu.edu.tw」為台北大學網域,差一個字母都不行!! 如駭客喜歡用 (數字「1」代替英文字「l」、數字「0」代替英文字「O」)
(3)資訊中心不會以「英文」發公告信,更不會用不通順地使用「對岸」的用語發公告信(如:此消息來自NTPU管理消息中心,面向所有客戶。)
如何解決「別人都不會收到詐騙信,為何我一直收到的問題」?
資訊中心建議:
把自己的電子郵件信箱加到白名單的記錄刪除。
若把本身信箱加到白名單,駭客可以「假造」寄件人信箱,使得收/寄件人信箱相同,便可繞過垃圾郵件過濾(Spam Server),便失去過濾及保護的作用。
其刪除白名單的方式如下:
(1)登入台北大學 mySPAM 垃圾過濾系統: https://sps1.ntpu.edu.tw/snspam/homepage.asp
(2)點選「個人化設定」,再點擊「過濾名單」
(3)刪除個人白名單記錄
以上資訊安全通告訊息,通知本校師生與同仁知悉。
若仍有其他資訊安全問題,煩請聯繫資訊中心系統組(分機:68228),謝謝。
本校電子郵件信箱近來屢次收到 詐騙信件 ,這是駭客使用假造寄件人詐騙比特幣(BTC)勒索郵件。
此次詐騙信件內容如下:
---- 英文版本詐騙信件內容 ----
Hi, I'm a hacker and programmer, I got access to your account ntpubulletin@mail.ntpu.edu.tw.
Your device was infected with my private malware, because your browser wasn't updated / patched,
in such case it's enough to just visit some website where my iframe is placed to get automatically infected, if you want to find out more - Google: "Drive-by exploitH".
My malware gave me full access to all your accounts, full control over your OS and it was possible for me to spy on you over your webcam.
I collected all your private data, recorded few videos of you (through your webcam) and I RECORDED YOU SATISFYING YOURSELF!!!
I can publish all your private data everywhere, including the darknet, where the very sick people are and the videos of you,
send them to your contacts, post them on social network and everywhere else!
Only you can prevent me from doing this and only I can help you out, there are no traces left,
as I removed my malware after my job was done and this email(s) has been sent from some hacked server...
The only way to stop me, is to pay exactly 727$ in bitcoin (BTC).
It's a very good offer, compared to all that HORRIBLE shit that will happen if you don't pay!
You can easily buy bitcoin on the next services: paxful, coinbase or check for bitcoin ATM near you, or Google for other exchanger.
You can send the bitcoin directly to my wallet, or create your own wallet first here: blockchain com, then receive and send to mine.
My bitcoin wallet is: 15WG3a68ZDPsYyJUkMKQkqwkvWykT74ufB
Copy and paste it, it's (cAsE-sEnSEtiVE)
You got 72 hours time.
As I got access to this email account, I will know if this email has been read.
If you get this email multiple times, it's to make sure that you read it, my mailer script is configured like this and after payment you can ignore it.
Please do not reply to this email. The sender's address is automatically generated to ensure that this email is received.
After receiving the payment, I remove all your data and you can life your live in peace like before.
Next time update your browser before browsing the web!
針對此封信資訊中心建議處理原則 :
(1)檢查個人電腦檔案是否被『加密』
(2)將個人重要檔案備份到外部儲存裝置
(3)webcam的部分,不用的時候可以移除(或用貼紙遮掉)
(4)以上都檢查完畢,此封信件可以忽略
簡易判斷是否為詐騙的原則 :
(1)資訊中心絕對不會跟您要帳號及密碼,試想管理者有權限『重設密碼』又何需跟您要帳密呢?
(2)請認明「ntpu.edu.tw」為台北大學網域,差一個字母都不行!! 如駭客喜歡用 (數字「1」代替英文字「l」、數字「0」代替英文字「O」)
(3)資訊中心不會以「英文」發公告信,更不會用不通順地使用「對岸」的用語發公告信(如:此消息來自NTPU管理消息中心,面向所有客戶。)
如何解決「別人都不會收到詐騙信,為何我一直收到的問題」?
資訊中心建議:
把自己的電子郵件信箱加到白名單的記錄刪除。
若把本身信箱加到白名單,駭客可以「假造」寄件人信箱,使得收/寄件人信箱相同,便可繞過垃圾郵件過濾(Spam Server),便失去過濾及保護的作用。
其刪除白名單的方式如下:
(1)登入台北大學 mySPAM 垃圾過濾系統: https://sps1.ntpu.edu.tw/snspam/homepage.asp
(2)點選「個人化設定」,再點擊「過濾名單」
(3)刪除個人白名單記錄
以上資訊安全通告訊息,通知本校師生與同仁知悉。
若仍有其他資訊安全問題,煩請聯繫資訊中心系統組(分機:68228),謝謝。