Google is working on reinforcing its security. But that does not leave you without any means to protect yourself. Here’s how to shield yourself from that sketchy Google Doc phishing attack.
How does the attack work?
We can’t begin protecting ourselves from a threat if we don’t exactly know what it is. Essentially, the phishing attack is triggered when you click on a link to edit a Google Doc. This is what it looks like:
I know. Not so suspicious-looking, right? That’s what makes it scary. An innocuous invite-to-edit email is an incredibly effective means of phishing information. More than a million GDoc users have fallen victim to the attack already.
Obviously, the easiest way to prevent yourself from this is…
Do NOT open any Google Doc from someone you don’t know (or do know).
Google Doc’s collaboration tools are prime. That’s why plenty of people use it, and phishers now find it an effective way to fool people. The most sensible thing to do is to report any unsolicited Google Doc requests you receive.
Google has also taken to Twitter explaining that they are closely investigating the issue, and have taken extensive measures to ensure that no one else gets phished. Here’s what they had to say:
— Google Docs (@googledocs) May 3, 2017
This is great, but that does not mean you’re in the clear. I’m of the opinion that us, as users, are also responsible for our security. We simply cannot put this upon corporations to deal with it completely (although, in a perfect world, it should be the corporation’s undertaking, and the corporation’s alone). We simply cannot trust anything/anyone anymore.
So, check your mail, find if there are fraudulent-looking emails, and delete or report it.
If you get phished, the dupers will get access to your inbox and contacts.
That doesn’t raise any immediate concern, but think of what the phishers might be able to do. The bottom line is to be more wary of the emails you receive. If you receive a fraudulent email or have fallen victim to the attack, click here.