摘要
近年来企业收到的钓鱼邮件数量逐年攀升,钓鱼邮件攻击也成为攻击者突破企业网络安全防御体系最简单且最直接有效的攻击方式,给很多企业造成了巨大的甚至不可挽回的损失。传统孤岛式的技术防护手段无法形成有效防护,本文介绍了钓鱼邮件攻击的现状和主要技术防护手段,针对钓鱼邮件实施机制提出从网络安全防护手段建设和网络安全应急响应处置等方面建立立体化防御体系,能够在日常网络安全防护及实战攻防演练对抗中发挥重要作用。
In recent years,the number of phishing emails received by companies has been steadily increasing.Phishing email attacks have become the simplest and most direct effective way for attackers to bypass enterprise network security defenses,causing significant,and sometimes irreparable,losses for many businesses.Traditional isolated technical protection measures fail to establish effective defense mechanisms.This article introduces the current situation of phishing email attacks and the main technical defense measures.It proposes the establishment of a comprehensive defense system from aspects such as network security protection measures and network security emergency response and handling,targeting the mechanisms employed in phishing emails.Such a system can play a crucial role in daily network security protection and real-world simulated attack-defense exercises.
作者
陈龙文
陈希
张恒
刘英豪
CHEN Long-wen;CHEN Xi;ZHANG Heng;LIU Ying-hao(China Mobile Group Fujian Co.,Ltd.,Fuzhou 350001,China)
出处
《电信工程技术与标准化》
2023年第7期22-27,共6页
Telecom Engineering Technics and Standardization
关键词
钓鱼邮件
立体防御
终端管控
流量分析
phishing e-mail
comprehensive defense
endpoint control
network traffi c analysis
