A new Google Docs phishing scam just reared its head a few hours ago, and it’s spreading like wildfire. Google appears to be taking action to stop it, but in the meantime: be super, super wary of Google Doc invites for now. If you fall for this one (and plenty of otherwise eagle-eyed people have already), it’ll blast out the bait to everyone on your contact list.
Here’s what you need to know:
This one is super sneaky; pretty much the only way to detect it before falling for it is to click the small “Google Docs” link on the actual Google-hosted page and notice that the developer info seems… off.
Zach Latta of Hack Club grabbed a video of the whole flow so you don’t have to test fate to see it for yourself:
Phishing (or malware) Google Doc links that appear to come from people you may know are going around. DELETE THE EMAIL. DON'T CLICK. pic.twitter.com/fSZcS7ljhu
— Zeynep Tufekci (@zeynep) May 3, 2017
— Zach Latta (@zachlatta) May 3, 2017
Check your Google account’s app permissions. There should not be an app called “Google Docs” there — actual Google Docs has access to your account by default. If you see it listed there, remove it by tapping the label and hitting “Remove”
Update: The Google Docs Twitter account just acknowledged the attack and says they’re working on it, but says not to click on things in the meantime.
We are investigating a phishing email that appears as Google Docs. We encourage you to not click through & report as phishing within Gmail.
— Google Docs (@googledocs) May 3, 2017
Update: Google says this specific attack should be blocked now, and they’re working on preventing similar attacks moving forward.
If you think you have been compromised or would like to discuss your IT Security, please call us today on 01793 295000 to speak to an expert member of our team.