If someone invites you to edit a file in Google Docs today or over the next week, don’t open it — it may be spam from a phishing scheme. Attackers have created an app which sends targets an emailed invitation from someone they may know, takes them to a real Google sign-in screen, then asks them to “continue to Google Docs.” But this grants permissions to a (malicious) third-party web app that’s simply been named “Google Docs,” which gives phishers access to your email and address book.
The key difference between this and a very simple email phishing scheme is that this doesn’t just take you to a bogus Google page and collect your password — something you could detect by checking the page URL. It works within Google’s system, but takes advantage of the fact that you can create a non-Google web app with a misleading name.
Google were quick to implement a change and remove the page, however it highlights how users are the weak link in most organizations.
ComputeZero advise customers to keep the following in mind:
- Ensure your workstation has anti virus, anti malware, firewall and the latest windows updates installed
- In general, dont open or click on any link or attachment you get from someone you don’t know.
- Never open your banking, email account or other sensitive websites from links within emails received.
- Beware of pop-ups while browsing and never enter any personal information!
- Always ensure websites you are entering usernames/passwords, have HTTPS and a green bar at the top of the browser.
- If in doubt, don’t click on the link!
If you suspect your PC may malware installed or an account of yours has been compromised, please get in touch with ComputeZero. We specialize in information security: