护网—2025｜社交账号不受控制？这是木马病毒在作祟

Core Insights - The article highlights the increasing threat of malware that can remotely control social software and facilitate online fraud [2][4]. Group 1: Fraud Mechanism - Step 1: Baiting the Victims - Scammers forge documents such as social security notifications and financial letters, distributing "virus files" via SMS, email, and chat windows. Clicking these files can turn a phone into a "zombie" that steals social account permissions [4]. - Step 2: Group Chat Manipulation - The malware takes control of accounts to create numerous groups and add friends, colleagues, and family members without consent [5]. - Step 3: Targeted Fraud - Inside the groups, scammers use fake authority documents, claim false benefits, and lure victims into phishing websites to steal bank card information [6]. Group 2: Prevention Measures - Technical Defense Instructions - Platforms like DingTalk, WeChat, and QQ are implementing measures such as risk models for abnormal group creation and enhanced warnings for unfamiliar links [7][8][9]. - User-side Protection - Users are advised to enable login device protection and remove unfamiliar devices from their accounts [8][9][10]. Group 3: Action Plan if Scammed - If a scam group is encountered, users should take immediate action by capturing evidence, disbanding or exiting the group, changing account passwords, and unlinking bank accounts from payment platforms [11][12].