When trying to identify pHishing emails, that is, those who try to fool us to keep our credentials, you have to use common sense and also look at certain aspects of it.
But sometimes cybercounts use elaborate strategies that it is practically impossible to know if it is a reliable email or a scam.
According to the developer Nick Johnsonhe explained that he was recently a victim of a complex attack by phishingwhich apparently came from Google herself.
States that this email phishing It was sent from a Google subdomain and that was signed by Google itself, and Gmail showed no warning about mail even though it was a scam.
Basically this mail redirects users to a Google Site link that turns out to be a false support website.
Cybercriminals have tried in this way that users believed they were on a legitimate page of Google And, by clicking on certain places of the same, they were allowed to enter their credentials, which would go to the cybercriminals.
The strange thing is that this email was signed by Google itselfand explain the situation.
He comments that the cybercriminals recorded the domain and created a Google account associated with it. From there, they created an Oauth application and used full phishing mail as the application name.
Then the attackers granted access to this Oauth application to their newly created Google account resulting in the sending of a security notification email, signed by Google that was forwarded to the victims.
It seems that after the researcher’s complaints, Google decided to solve this authentication problem.
So you must be very careful, because even emails that seem totally reliable, can steal access credentials.
Know How we work in NoticiasVE.
Tags: Malware, phishing