- Nov 5, 2011
- 5,855
Chrome, Firefox vulnerables to new phishing attack : Hackers go after Google users in advanced phishing attack : http://www.cnbc.com/id/101668517
Hackers are targeting Google users' passwords in a new advanced phishing scheme that is difficult to detect and block, security experts at the firm Bitdefender said on Tuesday.
(Read More: Lessons from Target's data breach fumble : http://www.cnbc.com/id/101650707 )
The attack began a couple of days ago and has managed to spread fast, said Bianca Stanescu, a security specialist at the firm.
"We haven't spotted this type of phishing attack. It's enhanced, usually the security solutions block the webpage for malicious activity before users open it, but this time security solutions receive the encoded content and they can't really block it."
The scam starts with an email that claims to be sent by Google with the phrase "Mail Notice" or "Lookout Notice" as the subject.
The message in the email reads: "This is a reminder that your email will be locked out in 24 hours, due to not being able to increase your email storage quota. Go to the INSTANT INCREASE to increase your Email storage automatically."
A link then redirects the user to a bogus Google login page where the user is prompted to put in their credentials.
Once the hackers receive the credentials they have access to not just a victim's email, but to all Google documents, Google Play, Google+ and if the person uses the same login information for multiple sites, the hacker will also have access to those.
Google has not yet responded to a request for comment.
..
- read more on the website, please ..
Hackers are targeting Google users' passwords in a new advanced phishing scheme that is difficult to detect and block, security experts at the firm Bitdefender said on Tuesday.
(Read More: Lessons from Target's data breach fumble : http://www.cnbc.com/id/101650707 )
The attack began a couple of days ago and has managed to spread fast, said Bianca Stanescu, a security specialist at the firm.
"We haven't spotted this type of phishing attack. It's enhanced, usually the security solutions block the webpage for malicious activity before users open it, but this time security solutions receive the encoded content and they can't really block it."
The scam starts with an email that claims to be sent by Google with the phrase "Mail Notice" or "Lookout Notice" as the subject.
The message in the email reads: "This is a reminder that your email will be locked out in 24 hours, due to not being able to increase your email storage quota. Go to the INSTANT INCREASE to increase your Email storage automatically."
A link then redirects the user to a bogus Google login page where the user is prompted to put in their credentials.
Once the hackers receive the credentials they have access to not just a victim's email, but to all Google documents, Google Play, Google+ and if the person uses the same login information for multiple sites, the hacker will also have access to those.
Google has not yet responded to a request for comment.
..
- read more on the website, please ..