A large scale phishing attack is underway. The attack uses a convincing Google Drive shared document email to get users to click a “Open in Docs” button. Upon doing so users are asked to authorize app that gains access to your email and address book.
The design is very similar to the new Google design, but there are a few things you can look for:
So if you have an email that looks like the image below, delete it. If you’ve clicked and authorized the app, instructions on cleaning your account will be published below shortly.
UPDATE: The Verge has reported that the app may have been de-authorized by Google, but to be safe you can follow the instruction below to double check if your account has the app authorized.
Update 4:15pm: Google has tweeted they are “investigating”
Update 5:50pm: Official statement from google on twitter:
If you’ve already clicked the button and authorized the app follow the following instructions to remove the malicious app and protect your account.
As always, moments like these are a good time to reset your password, but only do this after de-authorizing the app. Since the app has access to your email it’s good practice to do this second after the app is de-authorized.
Relentless digital innovation has defined the last few years. The symbiotic relationship between AI and…
Browser extensions have become as common as mobile apps. People tend to download many and…
Staying ahead in business often means embracing cutting-edge technologies. New tools can unlock new avenues…
In the digital age, data is the lifeblood of businesses. It fuels operations, decision-making, and…
The integration of smart home devices has become synonymous with modern living. They offer convenience,…
Microsoft 365 has a powerful suite of cloud-based productivity tools. They can help you work…