Google Rolls out New Phishing Protection

By

Just recently, we got word in about a phishing scam built around Google Docs, which targeted a wide variety of media figures using Gmail, Google's email service. Now, Google has brought out a new protection measure in a bid to stop such attacks, but some question whether it would have done much good even if it had been available when the attacks started.

For those using the Gmail application on Android devices, the new feature helps to provide some warning about suspicious links spotted. Given that the attack involved a Google Docs app hosted on Google's own domain, however, this new security measure might not have provided much protection at all, reports note. However, even if this doesn't stop every phishing attack, any amount of extra security is commonly worth pursuing. Especially when new attacks are sufficiently sophisticated to fool a variety of technologically-astute users.

This week's attack called on Google's own systems to purportedly be from a known contact who wanted to share a document. This kind of thing is done almost every day in some circles, and clicking on said link would have taken users to a Google-hosted Web page. It wouldn't even ask for a password, which would be a dead giveaway, but instead lists Google accounts. Then users were asked to provide permission for an app called “Google Docs,” which wasn't the actual Google Docs, but instead a front for the attack that would then spread to a user's contact list and attempt to replicate its success elsewhere.

Google is rolling out the new feature this week, and given how much of this phishing attack was connected immediately to Google itself, it's not clear that it would have been all that helpful even if it weren't late to the party. There are certain things users can do to protect themselves, but some of these attacks are too subtle to even be ferreted out by more advanced methods. It's really hard to say what anyone—even Google—could have done about this one or even can do about it in the future. However, Google needs to find a way; if Google Docs were ever considered too risky to use, that's a lot of business that will be going elsewhere.

There's really nothing else to say here but stay as vigilant as you can, keep your records in unconnected backup systems, and do your level best not to be beaten by scammers. You may not come out unscathed, but you'll prevent the worst of it.




Edited by Alicia Young
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

Contributing Writer

SHARE THIS ARTICLE
Related Articles

Can Science Outsmart Deepfake Deceivers? Klick Labs Proposes an Emerging Solution

By: Alex Passett    3/25/2024

Researchers at Klick Labs were able to identify audio deepfakes from authentic audio recordings via new vocal biomarker technology (alongside AI model…

Read More

Top 5 Best Ways to Integrate Technology for Successful Project-Based Learning

By: Contributing Writer    3/19/2024

Project-based learning, also popularly known as the PBL curriculum, emphasizes using and integrating technology with classroom teaching. This approach…

Read More

How to Protect Your Website From LDAP Injection Attacks

By: Contributing Writer    3/12/2024

Prevent LDAP injection attacks with regular testing, limiting access privileges, sanitizing user input, and applying the proper encoding functions.

Read More

Azure Cost Optimization: 5 Things You Can Do to Save on Azure

By: Contributing Writer    3/7/2024

Azure cost optimization is the process of managing and reducing the overall cost of using Azure. It involves understanding the resources you're using,…

Read More

Massive Meta Apps and Services Outage Impacts Users Worldwide

By: Alex Passett    3/5/2024

Meta's suite of apps and services are experiencing major global outages on Super Tuesday 2024.

Read More