Cybercriminals are finding new ways to make sure that they target new users. Recently, a new Google Docs phishing scam is now making rounds on the internet. Well, if you just received an email from your contact list with a Google document, don’t open it.
Don’t click that Google Docs link! It’s A Massive Phishing Attack
When you talk about phishing, a technique in which a hacker tries to steal personal data from a person or organization, but you think you’re too smart to be deceived. That’s where the problem is: some attacks are more sophisticated and we need a little attention to unmask them.
Well, cybercriminals are finding new ways to make sure that they target new users. Recently, a new Google Docs phishing scam is now making rounds on the internet. Well, if you just received an email from your contact list with a Google document, don’t open it.
The phishing emails are mostly addressed to [email protected] with the predetermined target placed in the BCC field. Let’s me explain how this attack takes place:
If any user clicks the link, he/she will be redirected to Google accounts page with different Google accounts. The page will ask to give permission to the app named “Google Docs”. Google docs is a fake app here. Once, the permission was granted, the app can read email address and can spread the message to all your contacts.
Here’s how the attack exactly looks like:
Phishing (or malware) Google Doc links that appear to come from people you may know are going around. DELETE THE EMAIL. DON'T CLICK. pic.twitter.com/fSZcS7ljhu
— zeynep tufekci (@zeynep) May 3, 2017
Just got this as well. Super sophisticated. pic.twitter.com/l6c1ljSFIX
— Zach Latta (@zachlatta) May 3, 2017
Google had taken steps against this attack, the company disable the accounts from where the hack started. Google’s security team is also working to prevent such phishing attempt in the future. Google said that the attack affected less than 1million users.
So, if you find any similar email, don’t click on it. If you want to make sure that you haven’t been hit by the phishing attack, then you need to visit this link and check for any suspicious app named Google Docs. If you found any, remove it.
So, what do you think about this? Share your views in the comment box below.