如果您收到来自Microsoft(Microsoft)的短信,它们可能是真实的,也可能是某种网络钓鱼企图。我们将在这篇文章中讨论微软(Microsoft)为什么给你发短信。随着短信变得如此流行,涉及短信的诈骗必须出现!Smishing是从短消息服务(Short Message Service)( SMS ) 和网络钓鱼(Phishing)中 创造出来的一个术语。让我们一探究竟!
为什么微软给我发短信?
如果短信中有链接,请注意。如下一节所述,这可能是一次网络钓鱼尝试。但是,如果它是文本消息中的数字或一些字母数字的东西,它可能是一个真正的一次性密码或试图识别它是否真的是你在尝试登录你的Microsoft帐户的东西。
具有两步验证设置的帐户会收到包含有助于您完成登录过程的信息的短信。此类消息很少包含任何链接。如果您在帐户验证消息中看到缩短的链接,它应该会将您带到知识库文章或打开Microsoft支持页面。只是(Just)不要在不知道链接指向何处的情况下单击链接。有一些URL 扩展器(URL expanders)可帮助您查看缩短的链接(bit.ly、ms.ft 或 goo.gl)指向何处。
除了OTP(一次性密码)之外,Microsoft可能会向您发送短信至:
- 通知(Inform)您登录成功,以防它怀疑未经授权的登录,以便您可以防止您的帐户被盗
- 告诉(Tell)您有人试图登录您的帐户;当区号存在显着差异时,就会发生这种情况;有时也会出现误报,所以你不必担心;如果您每天都收到类似的消息,请联系Microsoft 支持(Microsoft Support)
- 告诉(Tell)您有人试图使用新的浏览器/设备登录您的帐户;同样,可能会出现误报,但最好知道Microsoft正在关心您的登录信息,从而保护您的数据
以上可能是微软(Microsoft)给你发短信的一些原因。如果您不希望每次登录时都收到OTP ,您可以使用(OTP)Microsoft Authenticator应用程序。
阅读(Read):识别并避免欺诈性地使用 Microsoft 名称的诈骗(Identify & avoid scams that fraudulently use the Microsoft name)。
早些时候,黑客只有计算机和相关外围设备可以攻击。有了智能手机,欺骗人们变得更容易。您刚刚收到来自XX-MSFT之类的消息,并且该消息包含一个要求点击的链接。如果您不确定电子邮件是否真实,您会怎么做?您不会单击电子邮件中的链接。
您将登录您的Microsoft帐户并导航到电子邮件中提到的页面。如果页面不存在,您只需删除电子邮件,而不是尝试使用电子邮件中指定的链接联系Microsoft
在文本消息的情况下,这同样适用于此。无法确认消息的来源,因为不会有有效的数字,而只有一个表明或与Microsoft相关的名称。如果您无法验证号码或联系人姓名,请不要单击任何链接。因为智能手机中的链接将被缩短链接(shortened links),如 goo.gl 或 bit.ly。如果链接被证明是假的,它们会损坏您的设备。
提示:(TIP:)如果您不知道它会将您引向何方,切勿单击来自任何人的任何短信中的任何链接。
Why is Microsoft texting me? Are they genuine or phishing?
If yоu rеceive text messаges from Microsoft, they could be genuine, or they could be some kind of phishing attempt. We’ll discuss both in this post about why Microsoft is texting you. With text messaging becoming so popular, scams involving SMS’s had to appear! Smishing is a term coined from Short Message Service (SMS) and Phishing. Let us find out!
Why is Microsoft texting me?
If there is a link in the text message, beware. It could be a phishing attempt as explained in the next section. But if it is numbers or some alphanumeric thing in the text message, it could be a genuine one-time password or something that tries to identify if it is really you trying to log into your Microsoft account.
Accounts that have a two-step-verification setup get text messages containing information that will help you complete the login process. Such messages seldom contain any link. If you see a shortened link in the account verification message, it should take you to a knowledge base article or open the Microsoft support page. Just don’t click on the link without knowing where the link leads to. There are URL expanders that help you see where a shortened link (bit.ly, ms.ft, or goo.gl) leads to.
Besides OTP (one-time password), Microsoft may text you to:
- Inform you that you logged in successfully, in case it suspects unauthorized logins so that you can prevent your account from being stolen
- Tell you that someone is trying to log into your account; this happens when there is a significant difference in area codes; there are false positives too, sometimes, so you need not to worry; if you receive similar messages every day, contact Microsoft Support
- Tell you that someone is trying to log into your account using a new browser/device; again, there can be false positives, but it is better to know that Microsoft is caring for your login information and thereby securing your data
The above could be some reasons why Microsoft is texting you. If you do not wish to receive OTP every time you log in, you may use the Microsoft Authenticator app.
Read: Identify & avoid scams that fraudulently use the Microsoft name.
Earlier, the hackers had only the computers and related peripherals to attack. With smartphones, it has become easier to cheat people. You just received a message from something like XX-MSFT and the message contains a link asking to be clicked. What would you do in case of emails if you are not sure if it is genuine? You will not click the link in the email.
You will log into your Microsoft account and navigate to pages mentioned in the email message. If the pages are not there, you simply delete the email instead of trying to reach Microsoft using the links specified in the email
The same applies here, in case of text messages. The origin of the messages cannot be confirmed as there won’t be a valid number but just a name that says or relates to Microsoft. If there is no way you can validate the number or the contact-name, never click any links. Because the links in smartphones will be shortened links like goo.gl or bit.ly. They cause damage to your device if the link turns out to be a fake one.
TIP: Never click any link in any text messages from anyone if you don’t know where it leads you.