A naukri.com initiative
Kaspersky
3d
92
Image Credit: Kaspersky
How phishing emails are sent from [email protected] | Kaspersky official blog
- Scammers are using a phishing scheme that impersonates genuine Google services to deceive victims.
- Phishing emails mimic official Google notifications, using a legitimate Google address: [email protected].
- Victims receive an email claiming Google has been subpoenaed for their account data, with a link to a fake Google support page.
- The link appears genuine with an official Google domain but actually leads to a phishing site on sites.google.com.
- Attackers exploit trust in the Google domain, making it challenging to spot the scam without close inspection.
- Scammers registered a domain, set up a fake Google Workspace account, and used OAuth technology for this phishing scheme.
- Although Google OAuth doesn't share credentials, it can provide limited account access to scammers.
- Victims were directed to download potentially malicious 'legal documents' on the fake Google Support page.
- Users are advised to carefully examine email headers, avoid clicking suspicious links, and use robust security solutions to prevent falling for phishing scams.
- Google is working on fixing the OAuth vulnerability that scammers exploited in this phishing campaign.
Read Full Article
5 Likes
For uninterrupted reading, download the app