Wide Impact: Highly Effective Gmail Phishing Technique Being Exploited
Signal boosting the hell out of this. Because awareness is the best defense against hackers, thieves and assholes (and asshole thieving hackers).
Important for anyone on gmail!
Details:
- You get an email from a familiar address
- It has an attachment which also looks familiar and trustworthy, because that person has sent it to you before
- You try to open the attachment and are shunted to a very realistic gmail login screen to “log back in”
- If you do, your account is compromised.
To verify the incorrect login screen, check the url (shown above). The green lock symbol does not appear, and the actual url has spaces after it and extends way, way out into a string of more text.
Basically, if you’re logged in and click on something and are prompted to log in again, don’t do it.