Google傳票騙局

Google傳票騙局是一種網絡釣魚攻擊，欺詐者模仿Google以產生錯誤的緊迫感和恐懼感。

A Google subpoena scam is a phishing attack where fraudsters impersonate Google to create a false sense of urgency and fear. They typically begin by sending an email that appears to come from no-reply@google.com, claiming to inform you of a subpoena — a formal legal request. The email will often have a subject line like “Security Alert” or “Notice of Subpoena,” making it seem urgent and legitimate. These scammers prey on your natural concern about legal matters and data privacy, hoping to trigger a reaction.

Google傳票騙局是一種網絡釣魚攻擊，欺詐者模仿Google以創造出一種錯誤的緊迫感和恐懼感。他們通常是從發送似乎來自no-reply@google.com的電子郵件開始，聲稱向您通知傳票 - 正式的法律請求。該電子郵件通常會具有“安全警報”或“傳票通知”之類的主題行，從而使其看起來緊急和合理。這些騙子捕食您對法律事務和數據隱私的自然關注，希望引發反應。

Inside the email, the scammers will falsely claim that Google has been served with a subpoena requiring the company to turn over your account data, such as emails, documents or search history. The email will then urge you to click on a link to view your “case materials.” This link typically leads to a fraudulent website, often hosted on Google Sites, which is designed to look like a genuine Google support page. This added layer of legitimacy can easily trick users into believing the request is real.

在電子郵件中，詐騙者將錯誤地聲稱Google已被傳票提供，要求該公司將您的帳戶數據（例如電子郵件，文檔或搜索歷史記錄）移交給您的帳戶數據。然後，電子郵件將敦促您單擊鏈接以查看您的“案例材料”。此鏈接通常會導致一個欺詐性網站，該網站通常託管在Google網站上，該網站的設計看起來像是真正的Google支持頁面。這種合法性的增加層可以很容易地欺騙用戶相信該請求是真實的。

The most concerning part of this scam is that attackers are skilled at spoofing Google’s email addresses and mimicking the company’s official content. By doing so, they can bypass common security checks, such as DomainKeys Identified Mail (DKIM), which normally verifies the authenticity of an email. With this approach, the scam appears convincingly legitimate, making it easy for unsuspecting users to act impulsively — potentially exposing sensitive data or inadvertently installing malware.

此騙局最令人擔憂的是，攻擊者擅長欺騙Google的電子郵件地址並模仿公司的官方內容。通過這樣做，他們可以繞過常見的安全檢查，例如識別郵件（DKIM），通常會驗證電子郵件的真實性。通過這種方法，騙局似乎令人信服地合理，使毫無戒心的用戶可以沖動地採取行動 - 可能會暴露敏感數據或無意中安裝惡意軟件。

Did you know? DomainKeys Identified Mail (DKIM) is an email security standard that verifies whether a message really comes from the domain it claims to be from. It uses cryptographic signatures to protect against email spoofing and phishing attacks — making your inbox just a little safer every day.

你可知道？ DomainKeys確定的郵件（DKIM）是電子郵件安全標準，它驗證消息是否真正來自其聲稱來自的域。它使用加密簽名來防止電子郵件欺騙和網絡釣魚攻擊 - 每天的收件箱只會更安全。