Google Docs Phishing Scam on the March

By Steve Anderson May 04, 2017

Phishing scams are common these days, mainly because they work so well. Said scams attempt to get access to people's accounts and personal information by posing as something familiar and legitimate. A new phishing scam that emerged recently is built around Google Docs; though it's not the first time such a scam has been set up, it's surprisingly well-done, and might well pull some unsuspecting folks in.

The new phishing scam seems to have targeted journalists in general, starting with reporters from BuzzFeed, Vice, and even Gizmodo Media. While some have reported that the email looks slightly off, it's the kind of thing that only makes for vague suspicions. Those who actually click through to the link in question, meanwhile, arrive at a login screen that likewise looks nearly indistinguishable from a standard Google Docs operation.

Those who carry on from there find that this phishing scam manages to imitate real life very well indeed, with an authentic-looking Google.com URL, a link to Google Docs that seems to mesh, and even the ability to choose the account desired to view the document from. A couple points seem to give away the notion that this is a scam, however, as the email seems to be addressed to a string of h's, looking like this: “hhhhhhhhhhhhhh.”  No one's sure just who's behind this particular effort to land free credentials, but many are waiting to hear from Google proper about this new development.

The phishing scam is a bit more insidious than common scams; it's not specifically going after a credit card or something like that, but rather, it's going after account credentials. It could be an espionage effort; perhaps some media outlet is eager to gain an edge by seeing what's coming out on a competitor's website. Maybe it's even a particularly avid reader trying to get a glimpse at tomorrow's news today.

At any rate, it may be a good idea to ignore any Google Docs links that come up for a while, particularly for those in the media.  That's a temporary solution, but one that may work out well; most scammers don't stick to a scheme that doesn't work, which is why ransomware is still a big problem. Google actually responded to this point, noting that those who receive it should report it as phishing within Gmail itself.

Paying particular attention to incoming email may be especially helpful here, as well as working in places other than Google Docs that are a little too specialized to be readily cracked. A few such precautions and much of the threat here may be nullified. Sometimes, that's the best you can do.




Edited by Alicia Young

Contributing Writer

SHARE THIS ARTICLE
Related Articles

Mist Applies AI to Improve Wi-Fi

By: Paula Bernier    11/9/2017

Mist has created an AI-driven wireless platform that puts the user and his or mobile device at the heart of the wireless network. Combining machine le…

Read More

International Tech Innovation Growing, Says Consumer Technology Association

By: Doug Mohney    11/8/2017

The Consumer Technology Association (CTA) is best known for the world's largest trade event, but the organization's reach is growing far beyond the CE…

Read More

Broadcom Makes Unsolicited $130B Bid for Qualcomm

By: Paula Bernier    11/6/2017

In what could result in the biggest tech deal in history, semiconductor company Broadcom has made an offer to buy Qualcomm for a whopping $130 billion…

Read More

How Google's 'Moonshot' Could Benefit Industrial Markets

By: Kayla Matthews    10/30/2017

The term "moonshot" encapsulates the spirit of technological achievement: an accomplishment so ambitious, so improbable, that it's equivalent to sendi…

Read More

After Cisco/Broadsoft, Who's Next for M&A?

By: Doug Mohney    10/27/2017

Cisco's trail of acquisition tears over the decades includes the Flip video camera, Cerent, Scientific Atlantic, Linksys, and a couple of others. The …

Read More