M365網路釣魚防護警示可遮蔽,有心人士可透過CSS樣式表隱藏
支付動態 · 2024-08-08
有資安業者指出,微軟在收信軟體Outlook提供的首次聯絡安全提示(First Contact Safety Tip)警示功能,攻擊者有機會在信件加入特定的樣式表將其隱藏,從而降低收信人的警覺
研究人員進一步進行改造,使郵件看似經過加密及簽章處理、具有Outlook加上的圖示,而達到幾可亂真的效果。
雖然這兩種手法並不完美,較為細心的收信人有機會察覺異狀而提高警覺,但研究人員認為,這樣的做法還是會讓許多粗心的使用者上當,而讓攻擊者能夠得逞,以便執行下一步的攻擊行動。
對此,Certitude今年2月通報相關發現,微軟確認、肯定研究人員揭露的缺陷,但因為不符須立即改進的標準而暫時不處理,但會作為未來改進產品的參考。
Popular articles
PropellerAds Shared a New iGaming Case Study: 97,674 Installs and 12,701 Deposits in 3 Months
Marketing
Super PAC Raises $48 Million: Sports Betting Forces Ramp Up Political Push
Regulation
New Jersey July Gambling Revenue Hits $606M, Sweeps Casinos Banned
Regulation
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
HUIDU Invites You to Booth T70 at iGB L!VE 2026 — Let’s Ignite London This July!
HUIDU Focus
British gambling levy rates confirmed for each vertical
Regulation
Gaming & Technology Expo Makes a Powerful Entrance in CDMX
Marketing
Across 6 Cities: HUIDU Invites You to 8 World Cup Parties Redefining High-Value Social Networking
HUIDU Focus
UK MPs reopen 2025 gambling inquiry as reform stalls
Regulation
GAT Expo Puerto Rico Will Pulse with the New Era of Gaming in the Caribbean
Marketing
SBC Summit Canada to Make Player Safety a Key Pillar of 2026 Agenda
Marketing
B2B Tech Infrastructure Gains Momentum in Philippine Gaming Sector
Southeast Asia
Online gambling, crypto pose ongoing money laundering risks in Philippines, analyst says
Southeast Asia
Brazil Proposes Raising Gambling Tax Rate to 24%, With Revenue Allocated to Social Security and Healthcare
Regulation
1spin4win releases unique slot Don Catleone Hold and Win featuring gangster cats
Online Game
