Cyber security software company, Check Point, has uncovered a new Google Docs phishing scam that’s bypassing usual detection measures to land straight into victims’ inboxes.
You might think this wouldn’t happen to you, but it’s more likely than you think. Dubbed as an evolution of BEC (business email compromise) 3.0, this scam uses legitimate sites to gain access to your mailbox.
Here’s how it works: cyber criminals create a Google Doc, where they can hide any sort of attack they want, including phishing links and URLs that redirect to malware.
Then, they share the Doc with the victim using the typical Google Drive sharing process. And because the email arrives from a genuine Google email address, not some shady domain, victims are less likely to suspect foul play. It’s like getting a letter from your dear Aunt Mildred, only to find out it was penned by a con artist.
And here’s the kicker: detection and prevention tools are also more likely to trust emails from genuine services like Google.
But don’t start abandoning Google Docs just yet. Google, being the internet’s superhero, already has strong protections in place against these types of tactics. They’ve got built-in warnings in Docs, automatic scans in Drive, and probably a few other tricks up their sleeves.
In the meantime, you could channel your inner James Bond and implement advanced measures that use artificial intelligence to spot multiple phishing indicators. File scanning software and URL protection are also recommended. It’s time to upgrade your spy gadgets… and if my team can help, get in touch!
Stay vigilant, keep your cyber security glasses on, and don’t trust a Google Doc without giving it a good once-over.
#PhishingScam #GoogleDocs #CyberSecurity
https://www.techradar.com/pro/google-docs-phishing-scams-are-on-the-rise-heres-what-you-need-to-know