更新時間:2025/12/17 17:33:19
發佈時間:2023/03/06 15:23:23
TLP:
(White)
得對外公開散布,但不得違反著作權法等相關規定
更新說明:
F-ISAC接獲偽冒我國金融機構寄送釣魚情資,籲請民眾小心防範、慎防受騙。
如發現有偽冒我國金融機構所傳送之不明電子郵件、簡訊、社群媒體訊息,可逕洽該金融機構,亦可撥打165反詐騙專線查證,以維護個人資料及財產安全。
一、本期新增
(一)新增「疑似偽冒台灣人壽寄送釣魚郵件,竊取個人敏感性資料」
1. 釣魚郵件主旨:Alert:Keep Twlife Email Active (Gemini) 11/20/2025 8:20:07
2. 釣魚郵件內容:Twlife Webmail
We noticed that you haven't updated your mailbox in a while. Your mailbox needs updates to continue receiving emails in this account.
To continue enjoying Mailbox Basic, simply log in to Webmail with your email address and password to keep accessing your email account.
hxxps;//email.twlife.com.tw/ gotowebmail / Gemini
We strongly recommend reviewing your storage usage immediately to determine the best course of action. Upgrading your plan or removing unused files will ensure uninterrupted access to your account services.
For assistance, please contact our Support Team at [email protected]
3. 釣魚郵件寄件地址:[email protected]
4. 釣魚連結:hxxps://redirectsslvssl-n7iyhr8xcm[.]edgeone[.]app(2025年12月17日更新:連結已失效)
(二)新增「疑似偽冒台灣人壽寄送釣魚郵件,竊取個人敏感性資料」
1. 釣魚郵件主旨:⚠️ 最后警告:您的邮箱 [email protected] 账号将被终止,
2. 釣魚郵件內容:尊敬的用户, [email protected]:
最后提醒您,您的电子邮件帐户 ,将在以下时间终止。
11/23/2025 11:38:35 p.m.(中国标准时间)。
注意 :请指出您是否仍在使用此邮箱。
我还在用我的邮箱 请终止我的邮箱
©2025 taiwanlife.com
3. 釣魚郵件寄件地址: taiwanlife.com
4. 釣魚連結:hxxp://94[.]103[.]3[.]113/#[email protected](2025年12月17日更新:連結已失效)
(三)新增「疑似偽冒台灣人壽寄送釣魚郵件,竊取個人敏感性資料」
1. 釣魚郵件主旨:You have 2 message(s) pending review
2. 釣魚郵件內容:[email protected] message(s) in spam quarantine inbox
twlife.com.tw – Non-Disclosure Agreement.pdf
.
[email protected]
Deliver Whitelist Delete
11/26/2025 1:07:22 a.m.
[email protected] Whitelist Delete
Manage Mailbox: Spam(2)
3. 釣魚郵件寄件地址:twlife.com.tw Support
4. 釣魚連結:hxxp://ipfs[.]io/ipfs/bafkreig3nrzg66tlgvdmwnyi2ksli7ehvpaiwkfgtby3w4hubdp3gznamy#[email protected](2025年12月17日更新:連結已失效)
二、完整清單詳phishing_mail_sms_list_1141217xlsx
▶ 建議措施
⌵
無
▶ IoC資料欄位
⌵
| 類別 | 內容 |
|---|---|
| URL | https://azdkslgbb.cc.rs6.net/tn.jsp?f=0013HgZnZWarxnR8ywcMbNrH4pkRCe4pB1bwo2ZabNEYsisDWBAbOKoCA8omIB8Upnp5wMC3F8eHCUlW9cc-axgnRDE07lehfkcC8qBzY_4DGvslBogIB0idvQLmu5voMBCM5HHJVK9hOmUT6Hel81VRtAQ7dJhrJNmVaVp4gUBoH4=&c=T-0O1_9ve_Hi7_joVCxfTZpgyvUi2KkMJAHaeK-P7-iyqKmwi_vKBw==&ch=kK2SwlQZUhZyIL0g6tqDox7XqBnaWGYUx9NsHItQ9IXCA2pF5CEV5w== |
| URL | https://aguilarjuniorcaragua.com.br/sias |
| URL | http://impresaedilesimonecincotta.com/ |
| URL | https://liff.line.me/1645278921-kWRPP32q/?accountId=428wplov |
| URL | https://bit.ly/3enLiNw |
| URL | https://line.me/R/ti/p/%40946kadcr |
| URL | https://reverfyboy.infura-ipfs.io/ipfs/QmdnnpR3X2Bd9hLVuCC1jhHuWnBdyFE3VWhnzvvmGCd3GH |
| URL | https://reverfyboy.infura-ipfs.io/ipfs/QmdnnpR3X2Bd9hLVuCC1jhHuWnBdyFE3VWhnzvvmGCd3GH%[email protected] |
| URL | https://line.me/ti/p/@673zfgfs |
| URL | https://line.me/ti/p/gTEI_fHqnR |
| URL | https://youtu.be/b46CEJK54_s |
| URL | https://my.forms.app/form/625a168fe911ef58a52e5773 |
| URL | https://liff.line.me/1645278921-kWRPP32q/?accountId=904qkltb |
| URL | https://studroom.ru/-/union |
| URL | https://cuorzshbb.cc.rs6.net/tn.jsp?f=001HkLLfbYC51fHKw2wT-c2mdJVorckzwBb71MWsFHqHFH1BHYszMzQBxp9iCDYB5erob6utPFa0kQJx10SrkUgsz8cjSfjxoTLUsGgGWkV15A6nLKuuLqRwwkVaHw7jDzKdrDDbAPRxMgs0kN-OLLfN1kxZookWQd-p-PdXFBkMs8=&c=2_8HQG6TahXtZLWhQeeyhgPoC2UlFQQd0QBk9UkNS-wnaDnKq-QeHw==&ch=96aPhStD8pOZ3tEaXVBraDFoNKn0BB-ArpzYGAd3eL158i0YdobgFg== |
| URL | https://www.eventbrite.com/mytickets/11811807443/?sig=AQICAHhJPpK88%2BnERThoz0ShDUpYcZ683rBwifXM%2BOuyjlPVYwGxjB%2BwZRe%2FXM%2FTsFhzPNvqAAAA3jCB2wYJKoZIhvcNAQcGoIHNMIHKAgEAMIHEBgkqhkiG9w0BBwEwHgYJYIZIAWUDBAEuMBEEDNVa1hC4rs07WvgokwIBEICBlue06vboMiEUYfe4Iqz%2F4hVTZP2utHT84LJQnwMBDnZfaNHQvSxSAgDt2wHHyifP8sByrz0h1Q%2FLMmtetO%2F6F5WMFqV3C%2BVAXPCVmuhQkdB%2B6WFz3oED0hyLex1Nb8wujkVVxqH1hj9%2B%2FlRFKyB1eTRbIynsjCU4vP7qLEPKsLQEPWSUi1oGIRiQDuPOhadQj7OlpnTgrg%3D%3D&ref=eemailordconf&utm_campaign=order_confirm&utm_medium=email&utm_source=eventbrite&app_cta_src=order_conf_email&tickets_discarded=1&utm_term=viewtickets |
| URL | https://49x6jobbb.cc.rs6.net/tn.jsp?f=001L9ZsgshO8f9jVuefF2q54U-q_zzmXqe1WOHXtEyfVZo7y84R9Pj50q8TiF-nzXf_nWtgVmfAOYROkFi9xFftRh8t34CmajtDEOBSI4T0Yw3Z1Y_R7AJcuZQ2tzS1U61kmaEjDU3BZpRC7dU0IRIPy3WRDgEvY50J&c=KySMq18gTBRlYfzBkcUC3vBMAn_-yBzxDjzOBhGLEQvBQ5_r-xd2GA==&ch=unx2k4mRgLvP9Zv13kS42cyg6f-Fa_5SDn1_iKLftcDSiSsfr0-hTg== |
| URL | https://click.pstmrk.it/3s/click.pstmrk.it%2F3s%2F322872603228726032287260GMAIL%2540cinemata.hosted.phplist.com%252Flists%252Flt.php%253Ftid%253DfU8CA1cFAQEDCksODlEDSQUBAgcdV1FWVU8EVF0ODg0HBgUGAVZLAwcLBVRaAlVJAFBUDR0BBgcOTwdWAVAVDVYKAQQGBwZUAgIASgFRXwAJUF0AHVEGVQ5PUlZeBRUNDQVTG1YBDwcDAV8CAFIEUA%252321313%253F32287260TO%253D32287260%2F3TIB%2F1A61AQ%2FAg%2Fcbaf2b9f-89ba-453b-8944-126f65322b57%2F3%2FVVaOd_KQd2%2321313%3F32287260TO%3D32287260/3TIB/gEy1AQ/Ag/bf6eb3fb-0c18-4720-8256-ac5f0f613c41/3/IN_hhIiYFP#21313?32287260TO=32287260 |
| URL | https://email.tidiomailing.com/c/eJxskk9PrDwUxj8N7CD9Q0tZsChCR9TXkXGor25MaSk0Ms5EyCV--xsYJ9dr7obznMOT_p6c1qRx0rCW-m0KY8hiFCWE-H2KrbHKxBQzAllijVKstYxhrJqYslj7LkUARYBCBgkmJAqVNYxC1VoMFVRt7EVgcsYdD8oN7r0L9fHgD2k_TafRw9xDwkNCD06_hadxOny8hW7ykMDjv8bk_GMpCLEYUfCzbv7j5d3iIBHQ7r09qEmF_XGcWhOe-tPgxmlJsDqQWNrxoqfFsDZYTM6cVW5rdsWhFrwq8qu3cZsPRf5Y1RnvtJFQPMmaFVKAbd6B66yrN1y-3PFZ32Vyp_ggb7jI6nwHsqzT2_1snrjkMpfPt7yqNtn8UvOu5I-d2P0_85taAH4ti42syEM9vLTZrr7PK7nfwOcsn3XOJbvioixqfs6MEcQQf0W-bGC__Up-GZz3tS-zVUBOIa9Wybu16EZZ1CQ2YEmjgojgJmBJFAUQUUsJRqgh8fmM9Sul2prX28og73uEHwG-47_gois-V_QKFo2lbYNtEwANWRDFCAQMERooTSywFGIdQW-FivL-te9L9ywevAvwL9wfmP-Rug83IgAwWl7ep-qPx-XCw2n2f6XodwAAAP__4pzLkg |
情資編號:
FISAC-400-202303-0004
系統目錄:
單位公告
資安類別:
態勢感知 /
影響等級:
1
關鍵字:
網路釣魚