In social gatherings, criminals may steal personal information from the mobile phones of participants through some of the following hidden methods： -**Exploit software vulnerabilities**： -**Planting malicious programs**: Some criminals will prepare malicious software disguised as normal applications in advance, such as party-related mini-games, utility tools, or popular software. By inducing users to click to download and install, once the installation is successful, the malicious software can obtain the highest permissions of the mobile phone, and then steal all kinds of personal information such as contact information, SMS content, call logs, photos, videos, etc. in the mobile phone, and send this information to a server controlled by criminals. -**Exploit system vulnerabilities to attack**: It is inevitable that there will be some security vulnerabilities in mobile phone operating systems and applications. Criminals will take advantage of these known or newly discovered vulnerabilities, write specialized attack code, and develop attack tools for specific system versions or applications. In party scenes, they may trigger vulnerability attacks by setting up malicious Wi-Fi hotspots, sending special Bluetooth signals, or taking advantage of the potential risks of short-range wireless communication (NFC) technology, thereby breaking through the mobile phone's security line of defense and stealing personal information. -**With the help of social engineering**： -**Set up fake hotspots**: Create fake Wi-Fi hotspots similar to regular hotspots, with names and passwords that are very similar to common meeting place hotspots, such as “meeting place name-WiFi” and so on. When the user connects to the hotspot, criminals can intercept all kinds of information transmitted by the user on the network without the user's knowledge, including sensitive content such as login to social accounts, bank account information, and browsing history. -**Please scan the QR code**: Make a QR code that seems to be related to a party event, such as an event registration code, a group photo code, a discount information code, etc. In fact, the link behind these QR codes is a malicious website. Once the user scans it, the mobile phone may be implanted with malicious software, or directly guide the user to a phishing website to defraud the user of entering sensitive personal information, such as bank card number, password, verification code, etc. -**Operation after gaining trust**: Criminals may take the initiative to establish contact with party members and gain trust through enthusiastic talks and help. After that, they may look for opportunities to borrow mobile phones to use, such as claiming to make an emergency call or scan an important document. During use, they will secretly install some monitoring software or perform information theft operations. -**Observe input habits**: During the gathering process, criminals will secretly observe the actions of users entering passwords, verification codes and other information. By remembering these input habits and combining some of the information obtained by other means, such as account prompt information, they may try to crack the user's other account passwords to obtain more personal information.