3/24/2023 0 Comments Opening google drive spam on phone![]() They close by claiming that they briefed Google on their findings on January 4 but thus far the vulnerability has not been fixed. They also note that to avoid falling victim to such an attack, users need only refrain from clicking on links embedded in emails sent from Google Docs. ![]() ![]() The team at Avanan reports that thus far, most attacks have involved Outlook but note it could work equally well for virtually any email system. Here’s how it works: the scammers created a folder inside a Google Drive account and marked it as public, allowing anyone to see it. To make matters worse, the attacker does not even have to share the document-just putting a victim's address in a comment gets the job done. In the menu, tap Block (you will see the senders email address). Notably, victims do not even have to open a Google Docs document to be targeted because they are targeted by what appears to be a friendly email message. Touch and hold the file you want to lock. The same feature also allows the email to sneak its way through spam filters. And because the email comes from Google, users trust that it is legitimate. The hack works because the email that is sent does not show the hackers' email address-just a name they designate. The symbol automatically alerts the system to send an email to the person designated in the email address-the email that is sent has phishing links in it, sending the user to a webpage that could lead to malicious code. The hacking approach is both simple and straightforward-a hacker creates a Google Docs document and adds comments to it that include an symbol followed by an email address. ![]() Someone shared a document containing that title, and now your phone is begging you to look at it. They further claim that the vulnerability was not fixed by Google and because of that they began seeing hackers taking advantage of the vulnerability last month. A notification pops up on your phone: 'Click here for hot XXX action' It's Google Drive again. Then, this past October, they discovered that hackers had found another way to send phishing links to unsuspecting users, using the comment feature. ![]() The team at Avanan claims that they found an earlier exploit in Google Docs last June-one that allowed hackers to send phishing links to users. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |