A phishing scam has apparently been plaguing Gmail users, potentially stealing their Google credentials by fooling them to open an email attachment.
Phishing scams are most vulnerable things found on the internet today. They are fairly easy to be traced by the tech-savvy individuals, but some of these attacks are cleverly designed to manage and fool large population.
This has now struck the latest Gmail phishing scam, which may look more convincing for users but they can fool many unsuspecting users.
Here’s everything that you need to know about it:
How the Gmail phishing scam works
This phishing attack has been going on for a long time, as Wordfence has first alerted about it in the month of January. Google has taken prompt steps to tackle this issue and in late February, it has taken steps that will warn Chrome users in case they face this phishing attempt.
Similar to other scams, Gmail phishing scam includes an attacker with an email address which appears as someone known to the user. After that, they send an email with an attachment such as a Word document or a PDF, but it’s a scam. As soon as the users click on the attachment to preview it, they are redirected to a Google sign-in page asking them to enter their credentials.
How to find Gmail phishing scam
As Lifehacker says, those apparently legitimate attachments are basically the embedded images that seem to be attachments that redirect users to a fake Google sign-in page to steal their Google details.
That sign-in page is fake, but it appears to look normal, similar to the Google logo text boxes and everything that is similar to the Google sign-in page.
However, the address bar says it all. Instead of a standard URL like “https://” the page hides that data URI that starts with “data: text/htyml.” In order to prevent yourself from becoming the victim of this scam, a user can check the address bar and check whether it looks like a legitimate URL or a data URI.
While using Google Chrome if you see the “Not Secure” warning in the address bar, close the tab quickly. If you are using any different browser and if you see the “data: text/htyml” giveaway for the URI, close that tab quickly.
To know more about the scam and to avoid and report phishing emails, view the Google’s dedicated support page.