News recently. A big increase in emails to gmail users delivered via using gmail via web browser. The email has an embedded image in the email that opens to a page identical to the Google login page. Problem is - it is NOT the Google login page. Unsuspecting users that provide their account name and password are providing that information to the scammer.
These attacks look very real, since it is trivial to capture the real web page and provide it to the user.
The graphic presented to the user looks like the graphic in emails when there is an attachment to the email. In this case the graphic is an embedded image with the code to display the Google login page.
The image will have data:text/htyml in the browser bar.
If you have suspicion, exit GMAIL, supply the GMAIL or Google address in the browser bar, login, then delete the suspicious email.
No comments:
Post a Comment