Dangerous Google Docs Phishing Scam on the Loose

 

This is a copy of a letter sent to our clients yesterday:

Please be aware that the964345bedcd94234a11f9eb0940fa2eere is an extremely sophisticated and real-seeming Google Drive phishing attack making the rounds right now. The attack appears to be an invite to a shared Google Doc, usually from a trusted sender. Clicking the link will take you to Google’s  sign-in page, just like a normal Google doc invite. However, by accessing the document, you grant it full permission to your account details, including the ability to access Gmail, Google Drive, and a wealth of other information.

Thankfully, the email is pretty easy to spot. It is addressed to hhhhhhhhhhhhhh@domain.com, and doesn’t quite look the same as a standard google doc share. If you receive an email like this, please delete it immediately. If you have already opened the document within, please contact Cenetric immediately for assistance revoking the associated permissions.

The below image is what the header looks like:

phish

Thank you,

Cenetric Support

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: