On online communication platforms, criminals often use strategies disguised as friends to defraud others of sensitive information, often referred to as “Social Engineering” attacks. The following are common strategies and their characteristics to remind everyone to be vigilant： --- ### **1. Pretending to be an acquaintance** -**Fake account**: Steal or clone a friend's avatar, nickname, signature, or even imitate language habits to chat with you privately. -**Impersonating emergency help**: Claiming to be in urgent need of funds (such as “lost wallet”), verification code (such as “Help me receive a text message”) or account password (such as “Login requires friend assistance”). -**Response method**: Verify your identity directly through other trusted channels (such as telephone calls and videos), and do not trust text messages. --- ### **2. Emotional manipulation (PUA method)** -**Build false trust**: Ask questions for a long time, pretend to share life details, and gradually gain the trust of the victim before obtaining information. -**Create a sense of urgency**: Such as “the account will be blocked immediately, please help me click the link to renew” or “This investment opportunity ends tonight”. -**Coping method**: Be rational about sudden intimacy or urgent requests, and refuse to be emotionally kidnapped. --- ### **3. Phishing links/fake websites** -**Disguised component sharing link**: For example, “Look at the photos of our last trip” “I grabbed the coupon for you, get it quickly!"-**Disguised component sharing link**: For example, "Look at the photos of our last trip." ” -**Inducing input information**: The link may lead to a forged login page to steal account and bank card information. -**Response method**: Do not click on suspicious links, manually enter the official website address to verify. --- ### **4. Take advantage of the ”mutual friend" trap** -**Fictitious social relationships**: Such as “I am Xiao Wang's friend, he asked me to contact you”, and even forged group chat records. -**Response method**: Directly contact mutual friends to confirm, and be wary of man-in-the-middle attacks. --- ### **5. False questionnaires or activities** -**Lure with rewards**: “Fill out the questionnaire and draw a lottery" and "participate in the update of the alumni address book”, but in fact collect ID numbers, mobile phone numbers, etc. -**Response method**: Refuse to provide sensitive information and verify the authenticity of the event organizer. --- ### **6. Technical means to assist in camouflage** -**AI face changer/voice clone**: Enhance credibility by faking video orvoice calls. -**Trojan**: Send “party photos” and “documents” with viruses to steal device information. -**Response method**: Install security software and receive files carefully. --- ###**Self-protection advice：** 1. **Verify identity**: When money and privacy are involved, the identity of the other party must be confirmed in a variety of ways. 2. **Minimize information disclosure**: Avoid revealing ID numbers, bank cards, home addresses, etc. in chats. 3. **Enable two-factor authentication**: Enable two-factor authentication (such as SMS/APP verification code) for important accounts. 4. **Report suspicious behavior**: Report counterfeit accounts within the platform to block the fraud chain. The methods of online fraud are constantly refurbished, but the core is to take advantage of human weaknesses (trust, greed, fear). Maintaining calmness and multi-party verification are the key to prevention.