https://blog.qife122.com/tags/%E5%90%8C%E5%BD%A2%E5%BC%82%E4%B9%89%E8%AF%8D%E6%94%BB%E5%87%BB/ Recent content in 同形异义词攻击 on 办公AI智能小助手 Hugo zh-cn qife Sat, 22 Nov 2025 13:46:39 +0800 https://blog.qife122.com/p/%E5%A6%82%E4%BD%95%E6%9E%84%E5%BB%BA%E7%BB%95%E8%BF%87%E4%BA%BA%E5%B7%A5%E6%A3%80%E6%B5%8B%E7%9A%84%E5%90%8C%E5%BD%A2%E5%BC%82%E4%B9%89%E8%AF%8D%E9%92%93%E9%B1%BC%E9%93%BE%E6%8E%A5%E8%BF%9Ebooking.com%E7%94%A8%E6%88%B7%E9%83%BD%E4%B8%AD%E6%8B%9B/ Sat, 22 Nov 2025 13:46:39 +0800 https://blog.qife122.com/p/%E5%A6%82%E4%BD%95%E6%9E%84%E5%BB%BA%E7%BB%95%E8%BF%87%E4%BA%BA%E5%B7%A5%E6%A3%80%E6%B5%8B%E7%9A%84%E5%90%8C%E5%BD%A2%E5%BC%82%E4%B9%89%E8%AF%8D%E9%92%93%E9%B1%BC%E9%93%BE%E6%8E%A5%E8%BF%9Ebooking.com%E7%94%A8%E6%88%B7%E9%83%BD%E4%B8%AD%E6%8B%9B/ <h1 id="如何构建绕过人工检测的同形异义词钓鱼链接连bookingcom用户都中招">如何构建绕过人工检测的同形异义词钓鱼链接——连Booking.com用户都中招</h1> <h2 id="攻击概述">攻击概述</h2> <p>新发现的钓鱼活动利用Unicode同形异义词技巧冒充Booking.com，分发能够投放信息窃取器或远程访问木马(RATs)的恶意MSI安装程序。</p>