nnn
04-05-17, 12:55
182919Η Google έκλεισε μια μαζική απάτη ηλεκτρονικού "ψαρέματος" (phishing scam) που στόχευσε τους χρήστες της υπηρεσίας Google Docs.
Το εξελιγμένο phishing scam εξαπλώθηκε στο διαδίκτυο την Τετάρτη το απόγευμα, εξαπατώντας τους χρήστες να δώσουν πρόσβαση στους λογαριασμούς τους Google. Μετά από μερικές προφανείς συμβουλές - μην κάνετε κλικ στο σύνδεσμο - η Google ανακοόινωσε ότι έχει την κατάσταση υπό έλεγχο.
This scheme is different because it focuses on stealing access to your account rather than stealing your username and password. The attacker created a rogue app made to look like Google Docs, which unsuspecting victims would grant permission to.
Granting permission to a Gmail account is the "equivalent to having access to a username and password," Liam O'Murchu, director of Symantec's Security Technology and Response group said in an email. That means that victims could have been phished without even typing in their password.
Once the scheme tricked its victims, it would send emails to that person's contact list, in hopes of spreading itself. Google has since disabled the fake app.
The scam sent potential victims a link that appeared to be a Google Doc from someone they know and then directed them to Google's account selection screen, JakeSteam wrote. The emails looked legit but are addressed to "hhhhhhhhhhhhhhhh@mailinator.com."
Πηγή : Cnet (https://www.cnet.com/news/dont-get-reeled-in-by-massive-google-docs-phishing-scam/?ftag=COS-05-10aaa0g&utm_campaign=trueAnthem:+Trending+Content&utm_content=590aaac704d3010cbd791608&utm_medium=trueAnthem&utm_source=twitter)
Το εξελιγμένο phishing scam εξαπλώθηκε στο διαδίκτυο την Τετάρτη το απόγευμα, εξαπατώντας τους χρήστες να δώσουν πρόσβαση στους λογαριασμούς τους Google. Μετά από μερικές προφανείς συμβουλές - μην κάνετε κλικ στο σύνδεσμο - η Google ανακοόινωσε ότι έχει την κατάσταση υπό έλεγχο.
This scheme is different because it focuses on stealing access to your account rather than stealing your username and password. The attacker created a rogue app made to look like Google Docs, which unsuspecting victims would grant permission to.
Granting permission to a Gmail account is the "equivalent to having access to a username and password," Liam O'Murchu, director of Symantec's Security Technology and Response group said in an email. That means that victims could have been phished without even typing in their password.
Once the scheme tricked its victims, it would send emails to that person's contact list, in hopes of spreading itself. Google has since disabled the fake app.
The scam sent potential victims a link that appeared to be a Google Doc from someone they know and then directed them to Google's account selection screen, JakeSteam wrote. The emails looked legit but are addressed to "hhhhhhhhhhhhhhhh@mailinator.com."
Πηγή : Cnet (https://www.cnet.com/news/dont-get-reeled-in-by-massive-google-docs-phishing-scam/?ftag=COS-05-10aaa0g&utm_campaign=trueAnthem:+Trending+Content&utm_content=590aaac704d3010cbd791608&utm_medium=trueAnthem&utm_source=twitter)