A highly effective Gmail Phishing Exploit is causing serious trouble for Gmail users. When the exploit is successful, the intruder gains access to all your email and can send additional exploits to all your contacts, your return address. So any critical info that you’ve ever sent by email can be used by the intruder.
“The way the attack works is that an attacker will send an email to your Gmail account. That email may come from someone you know who has had their account hacked using this technique. It may also include something that looks like an image of an attachment you recognize from the sender.
You click on the image, expecting Gmail to give you a preview of the attachment. Instead, a new tab opens up and you are prompted by Gmail to sign in again. You glance at the location bar and you see ‘accounts.google.com’ in there.
“The attackers log in to your account immediately once they get the credentials, and they use one of your actual attachments, along with one of your actual subject lines, and send it to people in your contact list.
For example, they went into one student’s account, pulled an attachment with an athletic team practice schedule, generated the screenshot, and then paired that with a subject line that was tangentially related, and emailed it to the other members of the athletic team.”
The attackers signing into your account happens very quickly. It may be automated or they may have a team standing by to process accounts as they are compromised.”
Though the location bar may contain ‘accounts.google.com’, if it begins with “data:text/html”, do not go any further…delete the original message. So even an email that is seemingly from a friend can contain this serious Gmail Phishinhg Exploit.
Read the entire article from Wordfence.
Be careful out there!