Date:04/05/17
According to online reports — in particular, a detailed user thread on Reddit — clicking on an emailed share link, purportedly from a known source, was taking users to a site that asked permission for a fake app calling itself "Google Docs" to access their accounts. If they agreed, the app would then send additional copies of the original email to the users' contacts.
Earlier reports suggested the attack was a phishing scam potentially aimed at harvesting personal information and maybe even Google login credentials. But in a statement late Wednesday, Google said that while the campaign accessed and used contact information, no other data was apparently exposed.
Google said it was able to stop the campaign in about an hour. It has disabled offending accounts, removed fake pages and updated its Safe Browsing feature, which issues warnings when users visit dangerous sites.
Users don't have to take additional action, although Google encouraged those who want to be extra safe to run its security check feature.
One telltale sign for identifying the spam email: It appears to be directed to the address hhhhhhhhhhhhhhhh@mailinator.com, and is only blind copied to the recipient.
Google said it shut down an email spam campaign that impersonated its online file service, Google Docs.
According to online reports — in particular, a detailed user thread on Reddit — clicking on an emailed share link, purportedly from a known source, was taking users to a site that asked permission for a fake app calling itself "Google Docs" to access their accounts. If they agreed, the app would then send additional copies of the original email to the users' contacts.Earlier reports suggested the attack was a phishing scam potentially aimed at harvesting personal information and maybe even Google login credentials. But in a statement late Wednesday, Google said that while the campaign accessed and used contact information, no other data was apparently exposed.
Google said it was able to stop the campaign in about an hour. It has disabled offending accounts, removed fake pages and updated its Safe Browsing feature, which issues warnings when users visit dangerous sites.
Users don't have to take additional action, although Google encouraged those who want to be extra safe to run its security check feature.
One telltale sign for identifying the spam email: It appears to be directed to the address hhhhhhhhhhhhhhhh@mailinator.com, and is only blind copied to the recipient.
Views: 402
©ictnews.az. All rights reserved.
Similar news
- Cellphone Use May Raise Cancer Risk
- Australian police pushes cyber safety education
- Vietnam aims to lead in e-government
- Senate Website Gets Hacked
- US builds net for cyber war games
- Japan enacts anti-computer virus law
- India passes law vs e-waste
- Anonymous Declares War On The City Of Orlando
- Microsoft highlights evolving dangers as online identity data proliferates
- Consumers want internet security to be provided by banks
- Government facilities targets of cyber attack
- South Korean web attacks might been war drill
- Sri Lanka to Establish National Passport Database to Increase Border Security
- Hi-tech crime agencies set to employ information security professionals
- Phone hacking and online campaign bring down the News of the World
