{"id":8337,"date":"2017-01-19T09:38:29","date_gmt":"2017-01-19T17:38:29","guid":{"rendered":"http:\/\/blog.hellotech.com\/?p=8337"},"modified":"2021-06-14T02:26:24","modified_gmt":"2021-06-14T09:26:24","slug":"gmail-phishing-attack","status":"publish","type":"post","link":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack","title":{"rendered":"Sophisticated Phishing Hack Targets Gmail Users"},"content":{"rendered":"\n<p>A particularly effective phishing email is now circulating amongst Gmail users. It looks real enough that even tech-savvy individuals are falling victim to it. Security experts warn everyone to be on the lookout.<\/p>\n\n\n\n<p>The people at Wordfence first sounded the alarm <a href=\"https:\/\/www.wordfence.com\/blog\/2017\/01\/gmail-phishing-data-uri\/\" target=\"_blank\" rel=\"noopener noreferrer\">through a blog post<\/a>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-how-does-this-malware-work\">How does this malware work?<\/h2>\n\n\n\n<p>As with any other phishing emails, this particular one attempts to trick you into giving up your email password. Once it has access to your emails, its developers can then take advantage of any important information in your inbox, including your passwords to other websites, private conversations, and other sensitive data.<\/p>\n\n\n\n<p>This malicious email is highly effective that even careful users have been tricked. It poses as a normal email from one of your contacts. It usually comes with a PDF file attachment, which when clicked on will open to another page that looks very much like Gmail\u2019s sign-in page. Except it isn\u2019t a legitimate page but one that steals your private information.<\/p>\n\n\n\n<p>Once the attackers got hold of your email, they can then use your account to send more malicious emails to your contacts, thereby widening the pool of victims.<\/p>\n\n\n\n<p>Not only will your account be used to spread the phishing email to a wider network faster, once it is affected, there is a high chance that the attackers will corrupt other services tied to your email. They could, for example, execute a password reset for your bank accounts and other online subscriptions.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-how-can-you-protect-yourself\">How can you protect yourself?<\/h2>\n\n\n\n<p>The usual advice of not opening emails from people you don\u2019t know, unfortunately, does not apply here. This phishing hack effectively masquerades as an email from one of your friends or from a company you trust. What should ring an alarm in your head, though, is the fact that opening a PDF attachment should not open a new tab asking you to login to your email account, one that you have been logged into already.<\/p>\n\n\n\n<p>Be aware, as well, that the phishing email that is currently making the rounds uses a technique called data URI combined with tricks to fool people\u2019s perception. In the past, you may have noticed that if you visit a secure site, you will see the green lock icon or a green https:\/\/. For suspicious sites, you\u2019ll see a red http with a strike through.<\/p>\n\n\n\n<div class=\"wp-block-image wp-image-21927 size-full\"><figure class=\"aligncenter size-full\"><span data-src=\"https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2017\/01\/f799df4aa1ee4b567ccf61079691c17d.png\" rel=\"lightbox\" data-fancybox><img decoding=\"async\" width=\"599\" height=\"673\" src=\"https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2017\/01\/f799df4aa1ee4b567ccf61079691c17d.png\" alt=\"data URI phishing attack victimizing Gmail users\" class=\"wp-image-21927\" srcset=\"https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2017\/01\/f799df4aa1ee4b567ccf61079691c17d.png 599w, https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2017\/01\/f799df4aa1ee4b567ccf61079691c17d-267x300.png 267w\" sizes=\"(max-width: 599px) 100vw, 599px\" \/><\/span><figcaption>data URI phishing attack victimizing Gmail users<\/figcaption><\/figure><\/div>\n\n\n\n<p>In the case of this malevolent email, the page that opens won\u2019t have any different colors showing on the URL string. This tricks people into thinking that the page is normal and safe. But if you widen the address bar, you\u2019ll discover that there are lots of white space between the seemingly normal URL string and a large group of text containing the program that facilitates the phishing.<\/p>\n\n\n\n<p>If you did unwittingly open the email and click on the attachment, watch out for the new page that opens. If the Gmail sign-in page appears, check the address bar immediately. A legit URL should only start with \u201chttps:\/\/\u201d and you should see the green lock icon on its left. If these are absent, or if you rather see other things like \u201cdata:text\/html,https:\/\/\u201d, then close that page immediately. &nbsp;That is the phishing portal hackers are using to acquire your private information.<\/p>\n\n\n\n<p>Immediately delete the email containing the phishing attachment as well. And you might also want to inform the contact who sent the email to you that his or her account has been compromised. It is advisable to inform your friend via a different communication channel other than Gmail.<\/p>\n\n\n\n<p>Continue keeping a close eye on your emails moving forward because this phishing hack is quite effective at the moment. Fending it off from one source will not guarantee your safety. Vigilance is key.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-how-will-you-know-if-your-account-has-been-compromised\">How will you know if your account has been compromised?<\/h2>\n\n\n\n<p>One thing you can do is check your login history. Go to the bottom part of your email list. On the lower right, you\u2019ll find \u201cDetails\u201d. Click on that to view your Gmail account\u2019s activity history.<\/p>\n\n\n\n<p>You will be able to check which browsers are accessing your email at what time and where. If you see any suspicious account logins, forcibly close them. Then, change your password right away. To be safe, also change the passwords of other accounts tied to your email. It is also advisable to report the matter to Google\u2019s support center.<\/p>\n\n\n\n<p>Moving forward, consider enabling two-factor authentication for added protection. For your other accounts, you might want to take advantage of a reliable password manager as well.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-what-is-google-doing-about-this\">What is Google Doing about This?<\/h2>\n\n\n\n<p><a href=\"https:\/\/www.wordfence.com\/blog\/2017\/01\/gmail-phishing-data-uri\/#officialupdate\">Google recently released an official statement to Wordfence about the phishing attack<\/a>.<\/p>\n\n\n\n<p>According to Aaron Stein from Google Communications, they are \u201caware of this issue.\u201d He further added, \u201cWe continue to strengthen our defenses against it. We help protect users from phishing attacks in a variety of ways, including: machine learning based detection of phishing messages, Safe Browsing warnings that notify users of dangerous links in emails and browsers, preventing suspicious account sign-ins, and more. Users can also activate two-step verification for additional account protection.\u201d<\/p>\n\n\n\n<p>When asked if Google is going to do something specific about a data URI type of phishing attack, Stein responded with \u201cI can\u2019t speak to things that aren\u2019t out yet, but *please* watch this space. Should have more to share soon.\u201d<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A particularly effective phishing email is now circulating amongst Gmail users. It looks real enough that even tech-savvy individuals are falling victim to it. Security experts warn everyone to be on the lookout. The people at Wordfence first sounded the alarm through a blog post. How does this malware work? As with any other phishing emails, this particular one attempts to trick you into giving up your email password. Once it has access to your emails, its developers can then [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":8345,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[17583,17587,17593],"tags":[],"class_list":["post-8337","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-featured","category-news","category-staying-safe"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v20.10 (Yoast SEO v20.10) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Sophisticated Phishing Attack Targets Gmail Users<\/title>\n<meta name=\"description\" content=\"A particularly effective phishing email is now circulating amongst Gmail users. Security experts warn everyone to be on the lookout.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Sophisticated Phishing Hack Targets Gmail Users - The Plug - HelloTech\" \/>\n<meta property=\"og:description\" content=\"A particularly effective phishing email is now circulating amongst Gmail users. It looks real enough that even tech-savvy individuals are falling victim\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack\" \/>\n<meta property=\"og:site_name\" content=\"The Plug - HelloTech\" \/>\n<meta property=\"article:publisher\" content=\"http:\/\/www.facebook.com\/hellotech\" \/>\n<meta property=\"article:published_time\" content=\"2017-01-19T17:38:29+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-06-14T09:26:24+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2017\/01\/apple-691323_640-min.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"640\" \/>\n\t<meta property=\"og:image:height\" content=\"426\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@HelloTech\" \/>\n<meta name=\"twitter:site\" content=\"@HelloTech\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack\"},\"author\":{\"name\":\"admin\",\"@id\":\"https:\/\/www.hellotech.com\/blog\/#\/schema\/person\/dec00225dd888a509740ace5e4d9de6c\"},\"headline\":\"Sophisticated Phishing Hack Targets Gmail Users\",\"datePublished\":\"2017-01-19T17:38:29+00:00\",\"dateModified\":\"2021-06-14T09:26:24+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack\"},\"wordCount\":911,\"publisher\":{\"@id\":\"https:\/\/www.hellotech.com\/blog\/#organization\"},\"articleSection\":[\"Featured\",\"News\",\"Staying Safe\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack\",\"url\":\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack\",\"name\":\"Sophisticated Phishing Attack Targets Gmail Users\",\"isPartOf\":{\"@id\":\"https:\/\/www.hellotech.com\/blog\/#website\"},\"datePublished\":\"2017-01-19T17:38:29+00:00\",\"dateModified\":\"2021-06-14T09:26:24+00:00\",\"description\":\"A particularly effective phishing email is now circulating amongst Gmail users. Security experts warn everyone to be on the lookout.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.hellotech.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Sophisticated Phishing Hack Targets Gmail Users\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.hellotech.com\/blog\/#website\",\"url\":\"https:\/\/www.hellotech.com\/blog\/\",\"name\":\"The Plug - HelloTech\",\"description\":\"Turn to The Plug for informative tech news that you can use. \",\"publisher\":{\"@id\":\"https:\/\/www.hellotech.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.hellotech.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.hellotech.com\/blog\/#organization\",\"name\":\"HelloTech\",\"url\":\"https:\/\/www.hellotech.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.hellotech.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2018\/11\/HT-logo-revised-final.png\",\"contentUrl\":\"https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2018\/11\/HT-logo-revised-final.png\",\"width\":1000,\"height\":174,\"caption\":\"HelloTech\"},\"image\":{\"@id\":\"https:\/\/www.hellotech.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"http:\/\/www.facebook.com\/hellotech\",\"https:\/\/twitter.com\/HelloTech\",\"http:\/\/www.instagram.com\/hello_tech\",\"https:\/\/www.youtube.com\/channel\/UCIR-fbAKRfVuAbciDr2z4nQ\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.hellotech.com\/blog\/#\/schema\/person\/dec00225dd888a509740ace5e4d9de6c\",\"name\":\"admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.hellotech.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/cbb537d18df244ad7d57a3639d94ede5cd90bf1fb742392af5731beaf11ffeb1?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/cbb537d18df244ad7d57a3639d94ede5cd90bf1fb742392af5731beaf11ffeb1?s=96&d=mm&r=g\",\"caption\":\"admin\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Sophisticated Phishing Attack Targets Gmail Users","description":"A particularly effective phishing email is now circulating amongst Gmail users. Security experts warn everyone to be on the lookout.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack","og_locale":"en_US","og_type":"article","og_title":"Sophisticated Phishing Hack Targets Gmail Users - The Plug - HelloTech","og_description":"A particularly effective phishing email is now circulating amongst Gmail users. It looks real enough that even tech-savvy individuals are falling victim","og_url":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack","og_site_name":"The Plug - HelloTech","article_publisher":"http:\/\/www.facebook.com\/hellotech","article_published_time":"2017-01-19T17:38:29+00:00","article_modified_time":"2021-06-14T09:26:24+00:00","og_image":[{"width":640,"height":426,"url":"https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2017\/01\/apple-691323_640-min.jpg","type":"image\/jpeg"}],"author":"admin","twitter_card":"summary_large_image","twitter_creator":"@HelloTech","twitter_site":"@HelloTech","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack#article","isPartOf":{"@id":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack"},"author":{"name":"admin","@id":"https:\/\/www.hellotech.com\/blog\/#\/schema\/person\/dec00225dd888a509740ace5e4d9de6c"},"headline":"Sophisticated Phishing Hack Targets Gmail Users","datePublished":"2017-01-19T17:38:29+00:00","dateModified":"2021-06-14T09:26:24+00:00","mainEntityOfPage":{"@id":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack"},"wordCount":911,"publisher":{"@id":"https:\/\/www.hellotech.com\/blog\/#organization"},"articleSection":["Featured","News","Staying Safe"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack","url":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack","name":"Sophisticated Phishing Attack Targets Gmail Users","isPartOf":{"@id":"https:\/\/www.hellotech.com\/blog\/#website"},"datePublished":"2017-01-19T17:38:29+00:00","dateModified":"2021-06-14T09:26:24+00:00","description":"A particularly effective phishing email is now circulating amongst Gmail users. Security experts warn everyone to be on the lookout.","breadcrumb":{"@id":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.hellotech.com\/blog\/gmail-phishing-attack#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.hellotech.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Sophisticated Phishing Hack Targets Gmail Users"}]},{"@type":"WebSite","@id":"https:\/\/www.hellotech.com\/blog\/#website","url":"https:\/\/www.hellotech.com\/blog\/","name":"The Plug - HelloTech","description":"Turn to The Plug for informative tech news that you can use. ","publisher":{"@id":"https:\/\/www.hellotech.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.hellotech.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.hellotech.com\/blog\/#organization","name":"HelloTech","url":"https:\/\/www.hellotech.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.hellotech.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2018\/11\/HT-logo-revised-final.png","contentUrl":"https:\/\/www.hellotech.com\/blog\/wp-content\/uploads\/2018\/11\/HT-logo-revised-final.png","width":1000,"height":174,"caption":"HelloTech"},"image":{"@id":"https:\/\/www.hellotech.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["http:\/\/www.facebook.com\/hellotech","https:\/\/twitter.com\/HelloTech","http:\/\/www.instagram.com\/hello_tech","https:\/\/www.youtube.com\/channel\/UCIR-fbAKRfVuAbciDr2z4nQ"]},{"@type":"Person","@id":"https:\/\/www.hellotech.com\/blog\/#\/schema\/person\/dec00225dd888a509740ace5e4d9de6c","name":"admin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.hellotech.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/cbb537d18df244ad7d57a3639d94ede5cd90bf1fb742392af5731beaf11ffeb1?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/cbb537d18df244ad7d57a3639d94ede5cd90bf1fb742392af5731beaf11ffeb1?s=96&d=mm&r=g","caption":"admin"}}]}},"_links":{"self":[{"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/posts\/8337","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/comments?post=8337"}],"version-history":[{"count":0,"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/posts\/8337\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/media\/8345"}],"wp:attachment":[{"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/media?parent=8337"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/categories?post=8337"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.hellotech.com\/blog\/wp-json\/wp\/v2\/tags?post=8337"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}