TweakTown
Tech content trusted by users in North America and around the world
6,012 Reviews & Articles | 38,780 News Posts
TRENDING NOW: Windows 9 logo teased, with Microsoft's next OS 'coming soon'

Phishing attacks aimed at Google Docs, Drive users

A clever Google Docs phishing attack opens the door for cybercriminals to steal information from users

| Hacking & Security News | Posted: Mar 17, 2014 7:55 pm

Security researchers see a large volume of daily phishing attacks each day, but a recent phishing attempt to compromise Google Docs users has sent up red flags, according to a blog recently published by Symantec.

 

TweakTown image news/3/6/36371_01_phishing_attacks_aimed_at_google_docs_drive_users.jpg

 

The e-mail has a title of "Documents" and tricks users to view "an important document" via Google Docs by clicking an included link. Instead of going to the traditional Google Docs login page, a convincing fake Google Docs login page is where users end up. Even worse, the phishers are running the fake page on Google servers with SSL support, and when a user enters information, a compromised server receives the PHP script.

 

Following a compromised user logging in, a redirected page takes users to an authentic Google Docs file - a very convincing phishing effort.

 

Cybercriminals created the phony page using a folder inside a Google Drive account, which was set to public, then uploaded a file. Compromised Google credentials provide access to Gmail, Google Play, and other Google accounts, so this is a major security issue that users need to be aware of.

NEWS SOURCESSymantec.com, Scmagazine.com, Blog.techriffs.com

Related Tags

Further Reading: Read and find more Hacking & Security news at our Hacking & Security news index page.

Do you get our news RSS feed? Get It!

Got an opinion on this news? Post a comment below!

Latest Tech News Posts

View More News Posts
Check out TweakTown Polls on LockerDome on LockerDome

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases