sanok
Regular
- Joined
- 28.09.20
- Messages
- 56
- Reaction score
- 160
- Points
- 18
Scammers have discovered a new way to deceive users — using Google Drive. According to the publication the Wired, hackers abuse the functionality of Google Drive and use it to send supposedly legitimate emails and push notifications from Google, which, if opened, can redirect people to malicious websites.
Emails and notifications generated by hackers come directly from Google. On mobile devices, the Scam uses the Google Drive collaboration feature to generate a push notification inviting people to collaborate on a document. If clicked, the notification redirects the user to a document containing a very attractive link. Unlike regular spam, which Gmail filters quite well, such messages not only end up in the victim's mailbox, but also receive an additional level of legitimacy, coming from Google itself.
Users receive notifications in Google Drive and emails written in Russian or broken English asking them to work together on documents. Documents always contain a link to a fraudulent website, one of which, for example, floods people with notifications and requests to click on links to draw prizes. Other versions of fraudulent sites offer to check your Bank account or get a payment.
Emails and notifications generated by hackers come directly from Google. On mobile devices, the Scam uses the Google Drive collaboration feature to generate a push notification inviting people to collaborate on a document. If clicked, the notification redirects the user to a document containing a very attractive link. Unlike regular spam, which Gmail filters quite well, such messages not only end up in the victim's mailbox, but also receive an additional level of legitimacy, coming from Google itself.
Users receive notifications in Google Drive and emails written in Russian or broken English asking them to work together on documents. Documents always contain a link to a fraudulent website, one of which, for example, floods people with notifications and requests to click on links to draw prizes. Other versions of fraudulent sites offer to check your Bank account or get a payment.