This is a copy of a letter sent to our clients yesterday:
Please be aware that there is an extremely sophisticated and real-seeming Google Drive phishing attack making the rounds right now. The attack appears to be an invite to a shared Google Doc, usually from a trusted sender. Clicking the link will take you to Google’s sign-in page, just like a normal Google doc invite. However, by accessing the document, you grant it full permission to your account details, including the ability to access Gmail, Google Drive, and a wealth of other information.
Thankfully, the email is pretty easy to spot. It is addressed to firstname.lastname@example.org, and doesn’t quite look the same as a standard google doc share. If you receive an email like this, please delete it immediately. If you have already opened the document within, please contact Cenetric immediately for assistance revoking the associated permissions.
The below image is what the header looks like: