Google Phishing PSA
📅 Historical note: This phishing campaign made the rounds on May 3, 2017 and was patched by Google within hours. It's preserved here as a good example of a well-crafted phishing attack and a reminder that even convincing-looking emails can be malicious.
There was a phishing email circulating through Gmail today, and Google moved quickly to shut it down — but here's what to know.
The email appears to come from [email protected] and looks like someone is sharing a Google Doc with you. They're not.
If you haven't opened it: Delete it.
If you already opened it:
- Change your Google password immediately
- Go to myaccount.google.com/permissions and revoke access for any suspicious "Google Docs" entry
This was a particularly well-crafted phishing attack — it used a real Google sign-in page and requested OAuth permissions, meaning it never actually needed your password to compromise your account.