TweakTown
Tech content trusted by users in North America and around the world
5,977 Reviews & Articles | 38,622 News Posts

Phishing attacks aimed at Google Docs, Drive users

A clever Google Docs phishing attack opens the door for cybercriminals to steal information from users

| Hacking & Security News | Posted: Jan 1, 1970 12:00 am

Security researchers see a large volume of daily phishing attacks each day, but a recent phishing attempt to compromise Google Docs users has sent up red flags, according to a blog recently published by Symantec.

 

TweakTown image news/3/6/36371_01_phishing_attacks_aimed_at_google_docs_drive_users.jpg

 

The e-mail has a title of "Documents" and tricks users to view "an important document" via Google Docs by clicking an included link. Instead of going to the traditional Google Docs login page, a convincing fake Google Docs login page is where users end up. Even worse, the phishers are running the fake page on Google servers with SSL support, and when a user enters information, a compromised server receives the PHP script.

 

Following a compromised user logging in, a redirected page takes users to an authentic Google Docs file - a very convincing phishing effort.

 

Cybercriminals created the phony page using a folder inside a Google Drive account, which was set to public, then uploaded a file. Compromised Google credentials provide access to Gmail, Google Play, and other Google accounts, so this is a major security issue that users need to be aware of.

NEWS SOURCESSymantec.com, Scmagazine.com, Blog.techriffs.com

Related Tags

Further Reading: Read and find more Hacking & Security news at our Hacking & Security news index page.

Do you get our news RSS feed? Get It!

Post a Comment about this news

Latest Tech News Posts

View More News Posts
Check out TweakTown Polls on LockerDome on LockerDome

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases