Stand up to scareware with scareware blocker, now available in preview in Microsoft Edge
挺身对抗恐吓软件：Edge 浏览器现已推出恐吓软件拦截器（预览版）

At the 2024 Ignite conference last November, we announced scareware blocker for Microsoft Edge which will provide a new, first line of defense against scams. Today, we’re excited to share more about how it works and invite you to preview the feature.
在去年 11 月的 Ignite 2024 大会上，我们宣布了 Microsoft Edge 的“恐吓软件拦截器”功能，它将为抵御网络诈骗提供一道全新的第一防线 。今天，我们很高兴能与大家分享更多关于其工作原理的信息，并邀请您抢先体验这一功能。

You’ve seen it yourself. There are more scams than ever before, on your phone, in your inbox, and in your browser.  In fact, our data shows that in 2024, Edge blocked five times more scams on average than it blocked just three years earlier.
想必您也亲身经历过：无论是手机、收件箱还是浏览器，如今的网络诈骗比以往任何时候都更加猖獗。事实上，我们的数据显示，2024 年 Edge 平均拦截的诈骗数量是三年前的五倍之多。

Today, Edge uses Microsoft Defender SmartScreen to block known scams as people encounter them. But what if you’re the first person to see a new scam before it can be blocked? What if a scam hits your coworkers, your friends, or your family? The FBI reports that victims lose over a billion dollars per year to tech support and related scams. While no one is immune, these scams particularly prey on vulnerable elderly communities.
目前，Edge 通过 Microsoft Defender SmartScreen 来拦截用户遇到的已知诈骗。但万一您是某个新型诈骗的第一个受害者，还没来得及被拦截怎么办？万一您的同事、朋友或家人中招了呢？FBI 的报告显示，每年因技术支持及相关诈骗造成的损失超过十亿美元 。虽然人人都可能上当，但这类诈骗尤其喜欢对弱势的老年群体下手。

“Scareware” scams are a particularly convincing type of tech support scam. They use aggressive web pages to convince victims into thinking their system is infected with malware, pressure them to call a fake tech support number, and try to gain access to the computer. Last year, Hollywood even made a blockbuster action movie with scareware scammers as the villains.
“恐吓软件”是一种极具迷惑性的技术支持诈骗。它们利用咄咄逼人的网页，让受害者误以为自己的系统感染了恶意软件，并迫使他们拨打虚假的技术支持电话，从而试图获取计算机的访问权限。去年，好莱坞甚至还拍了一部动作大片，里面的反派就是搞恐吓软件诈骗的。

Scareware blocker uses a machine learning model to recognize the tell-tale signs of scareware scams and puts users back in control of their computer. We call on users who want to combat scams to help us test our preview. Read on to learn how you can help!
“恐吓软件拦截器”采用机器学习模型来识别恐吓软件骗局的蛛丝马迹，帮助用户重新夺回计算机的控制权。我们在此号召希望与诈骗斗争的用户们，帮助我们测试这一预览功能。请继续阅读，了解如何助我们一臂之力！

Figure 1 – Scareware blocker fights tech scams
图 1 – 恐吓软件拦截器对抗技术诈骗

Anatomy of a scareware scam
恐吓软件骗局剖析

Users can always close a full screen scareware page by PRESSING AND HOLDING the ESC key. We’re hopeful that raising awareness will help users protect themselves, even if they are not using scareware blocker.
用户随时可以通过“长按 ESC 键”来关闭全屏显示的恐吓软件页面。 我们希望通过普及这一知识，帮助用户更好地保护自己，即便他们没有使用“恐吓软件拦截器”。

While users have become more cautious with passwords and the files they download, scareware isn’t on most people’s radar. Even the most cautious can fall victim to scareware, as scam websites prey on their caution to create anxiety.
尽管用户对密码和下载文件已经越发谨慎，但大多数人对“恐吓软件”还知之甚少。由于诈骗网站正是利用了人们的谨慎心理来制造焦虑，因此即便是最警惕的用户也可能成为恐吓软件的受害者。

Scams move fast to evade detection
诈骗手段花样翻新，旨在逃避检测

Scams have become more sophisticated, often moving after a few hours to evade detection. This makes early detection crucial for protecting users. Scareware can appear unexpectedly, especially in rogue online advertisements. For example, you might accidentally click on a misleading banner ad while searching for a product manual, leading you to a scareware site instead of the PDF file you were trying to download.
如今的诈骗手段愈发高明，往往在数小时内就会变换花样以逃避检测，这使得早期发现对于保护用户至关重要。恐吓软件可能会在不经意间出现，尤其是在那些流氓在线广告中。例如，当您在搜索产品手册时，可能会误点一个有误导性的横幅广告，结果没有下载到想要的 PDF 文件，反而被引到了一个恐吓软件网站。

Scareware uses full screen mode just like video sites
恐吓软件也会像视频网站一样，利用全屏模式来做文章

Scareware sites often use full screen mode, just like popular video sites. Users know they can press ESC to exit full-screen mode, but scareware sites try to camouflage the ESC option, leaving users unsure of what to do next.
恐吓软件网站经常会像热门视频网站那样，利用全屏模式来迷惑用户。虽然用户知道可以按 ESC 键退出全屏，但这些网站会想方设法地隐藏这个选项，让用户一时间不知所措。

Scareware uses audio and keyboard mouse tricks to incite panic
恐吓软件还会利用音频和键鼠操作来制造恐慌

Scareware sites also use audio and keyboard/mouse tricks to incite panic. They might play a warning from a computer-generated voice, leading victims to believe their computer has an identity theft virus and urging them to call support immediately. Savvy users might suspect a full-screen web page and press ESC, but scareware sites may try to hijack the keyboard and mouse to prevent escape.
恐吓软件网站还会利用音频和键鼠操作来制造恐慌。它们可能会播放一段电脑合成的警告语音，让受害者误以为自己的电脑感染了能盗取身份信息的病毒，并催促他们立即致电“技术支持”。经验丰富的用户可能会察觉到这只是一个全屏网页，并尝试按下 ESC 键，但恐吓软件网站可能会劫持键盘和鼠标，阻止用户退出。

How scareware blocker will help
恐吓软件拦截器如何助你一臂之力

As mentioned above, most people who land on a scam in Edge will be protected by Defender SmartScreen, which provides real-time checks on new and unfamiliar sites where abuse is more likely to hide. Once an abusive site is detected, SmartScreen can protect users worldwide within minutes.
如上所述，大多数在 Edge 浏览器中访问到诈骗网站的用户都会受到 Defender SmartScreen 的保护。该功能会对那些更容易隐藏恶意行为的新网站和陌生网站进行实时检查。一旦检测到恶意网站，SmartScreen 可以在几分钟内为全球用户提供保护。

Scareware blocker adds a new, first line of defense to help protect the users exposed to a new scam if it attempts to open a full screen page. Scareware blocker uses a machine learning model that runs on the local computer. The model uses computer vision to compare full screen pages to thousands of sample scams that the scam-fighting community shared with us. The model runs locally, without saving or sending images to the cloud.
恐吓软件拦截器则增添了一道全新的第一道防线，专门用于保护那些遭遇新型诈骗的用户 ——如果诈骗网站试图打开一个全屏页面。恐吓软件拦截器使用一个在本地计算机上运行的机器学习模型。该模型利用计算机视觉技术，将当前的全屏页面与反诈骗社区与我们共享的数千个诈骗样本进行比对。整个模型都在本地运行，不会保存或向云端发送任何图像。

When scareware blocker suspects a page is a scam, Edge will put users back in control by exiting full screen mode, stopping aggressive audio playback, warning the user, and showing a thumbnail of the page they were just viewing:
当恐吓软件拦截器怀疑某个页面是诈骗网站时，Edge 浏览器会退出全屏模式、停止播放攻击性的音频、向用户发出警告，并显示用户刚刚浏览页面的缩略图，从而帮助用户重新夺回控制权：

Send feedback to protect others & avoid false alarms
发送反馈，保护他人，避免误报

Once the user is back in control of their browser, scareware blocker will let them report the malicious site to protect others. Users can share a screenshot of the scam and other diagnostics with Microsoft, helping the Defender SmartScreen service detect scareware outbreaks across multiple machines. If they don’t choose to report, the scareware blocker model will discard the page.
当用户重新夺回浏览器的控制权后，恐吓软件拦截器会引导他们举报该恶意网站，以保护其他用户。用户可以与微软分享诈骗页面的截图和其他诊断信息，帮助 Defender SmartScreen 服务检测在多台设备上爆发的恐吓软件。如果用户选择不举报，恐吓软件拦截器模型则会直接丢弃该页面。

To reduce false alarms, users can also report when scareware blocker makes a mistake and blocks a legitimate page.
为了减少误报，当恐吓软件拦截器错误地拦截了正常页面时，用户也可以进行反馈。

Sending this feedback makes a difference. By reporting false alarms, you help us make the feature more reliable to catch the real scams. Beyond just blocking individual scam outbreaks, our Microsoft Digital Crimes Unit goes even further to target the cybercrime supply chain directly.
您的反馈至关重要。通过报告误报，您可以帮助我们提高该功能的可靠性，从而更精准地识别真正的诈骗。除了拦截个别的诈骗行为，我们的 微软数字犯罪调查部 还会更进一步， 直击网络犯罪的供应链 。

Help us stand up to scams by enabling scareware blocker
启用恐吓软件拦截器，和我们一起抵制诈骗

While we recognize that the scareware blocker may not catch every scam—especially as tactics evolve—we are committed to empowering users with solutions while we improve our defenses.
我们深知，恐吓软件拦截器或许无法捕获所有骗局——尤其是在诈骗手段不断演变的情况下。但我们承诺，在不断完善防御机制的同时，也会为用户提供有效的解决方案来保护自己。

Scareware blocker is rolling out now as a preview for all Edge users on Windows PCs. To enable in Edge, first make sure that previews are allowed by your administrator and also that Edge is fully up to date. You may want to restart the browser once more to make sure your Edge client has the preview.
恐吓软件拦截器现已作为预览版，向所有 Windows PC 上的 Edge 用户陆续推送。若要在 Edge 中启用此功能，请先确保您的管理员允许使用预览功能，并确认 Edge 已是最新版本。您可能需要重启一次浏览器，以确保您的 Edge 客户端已获取此预览版。

After making sure you have the latest updates, you should see the scareware blocker preview listed under “Privacy Search and Services” as shown below. Your feedback will help us block scams faster and improve the model to reduce false positives!
确保浏览器已更新到最新版本后，你就能在“ 隐私、搜索和服务 ”下看到如下图所示的“恐吓软件拦截器（预览版）”选项。你的反馈将帮助我们更快地拦截诈骗行为，并改进模型以减少误报！