Google Rolls out New Phishing Protection

By Steve Anderson May 04, 2017

Just recently, we got word in about a phishing scam built around Google Docs, which targeted a wide variety of media figures using Gmail, Google's email service. Now, Google has brought out a new protection measure in a bid to stop such attacks, but some question whether it would have done much good even if it had been available when the attacks started.

For those using the Gmail application on Android devices, the new feature helps to provide some warning about suspicious links spotted. Given that the attack involved a Google Docs app hosted on Google's own domain, however, this new security measure might not have provided much protection at all, reports note. However, even if this doesn't stop every phishing attack, any amount of extra security is commonly worth pursuing. Especially when new attacks are sufficiently sophisticated to fool a variety of technologically-astute users.

This week's attack called on Google's own systems to purportedly be from a known contact who wanted to share a document. This kind of thing is done almost every day in some circles, and clicking on said link would have taken users to a Google-hosted Web page. It wouldn't even ask for a password, which would be a dead giveaway, but instead lists Google accounts. Then users were asked to provide permission for an app called “Google Docs,” which wasn't the actual Google Docs, but instead a front for the attack that would then spread to a user's contact list and attempt to replicate its success elsewhere.

Google is rolling out the new feature this week, and given how much of this phishing attack was connected immediately to Google itself, it's not clear that it would have been all that helpful even if it weren't late to the party. There are certain things users can do to protect themselves, but some of these attacks are too subtle to even be ferreted out by more advanced methods. It's really hard to say what anyone—even Google—could have done about this one or even can do about it in the future. However, Google needs to find a way; if Google Docs were ever considered too risky to use, that's a lot of business that will be going elsewhere.

There's really nothing else to say here but stay as vigilant as you can, keep your records in unconnected backup systems, and do your level best not to be beaten by scammers. You may not come out unscathed, but you'll prevent the worst of it.




Edited by Alicia Young

Contributing Writer

SHARE THIS ARTICLE
Related Articles

6 Challenges of 5G, and the 9 Pillars of Assurance Strategy

By: Special Guest    9/17/2018

To make 5G possible, everything will change. The 5G network will involve new antennas and chipsets, new architectures, new KPIs, new vendors, cloud di…

Read More

Putting the Flow into Workflow, Paessler and Briefery Help Businesses Operate Better

By: Cynthia S. Artin    9/14/2018

The digital transformation of business is generating a lot of value, through more automation, more intelligence, and ultimately more efficiency.

Read More

From Mainframe to Open Frameworks, Linux Foundation Fuels Up with Rocket Software

By: Special Guest    9/6/2018

Last week, at the Open Source Summit, hosted by The Linux Foundation, the Open Mainframe Project gave birth to Zowe, introduced a new open source soft…

Read More

Unified Office Takes a Trip to the Dentist Office

By: Cynthia S. Artin    9/6/2018

Not many of us love going to see the dentist, and one company working across unified voice, productivity and even IoT systems is out to make the exper…

Read More

AIOps Outfit Moogsoft Launches Observe

By: Paula Bernier    8/30/2018

Moogsoft Observe advances the capabilities of AIOps to help IT teams better manage their services and applications in the face of a massive proliferat…

Read More