Cybercriminals are abusing Google's infrastructure, creating emails that appear to come from Google in order to persuade people into handing over their Google account credentials.
This attack, first flagged by Nick Johnson, the lead developer of the Ethereum Name Service (ENS), a blockchain equivalent of the popular internet naming convention known as the Domain Name System (DNS).
Nick received a very official looking security alert about a subpoena allegedly issued to Google by law enforcement to information contained in Nick's Google account. A URL in the email pointed Nick to a sites.google.com page that looked like an exact copy of the official Google support portal.
This attack, first flagged by Nick Johnson, the lead developer of the Ethereum Name Service (ENS), a blockchain equivalent of the popular internet naming convention known as the Domain Name System (DNS).
Nick received a very official looking security alert about a subpoena allegedly issued to Google by law enforcement to information contained in Nick's Google account. A URL in the email pointed Nick to a sites.google.com page that looked like an exact copy of the official Google support portal.
All Gmail users at risk from clever replay attack
All Google accounts could end up compromised by a clever replay attack on Gmail users abusing Google infrastructure.
www.malwarebytes.com
