Subtle Gmail attack, look out for “data:text/html”

There’s a write-up at Wordfence about a subtle new type of attack via the Google Mail service.

You receive an attachment that looks like its come from one of your contacts, possibly related to a shared interest or project. So your guard will be down.

reported gmail problems

 

At the top of your browser you can see https://accounts.google.com which sounds ok. However there’s a bit of extra info to the left, as you can see, saying “data:text/html”. That’s where the attack comes from and it triggers a sign-in page that looks like Google asking for your password again.

Delete the email, walk away!

This article published by Redleg IT from information originally published by Wordfence

Let’s Do Business – Lancashire’s b2b Networking Group

© Let’s Do Business 2017

Subscribe To Our Blog

Please subscribe to our blog to receive regular updates from Let’s Do Business.

 
Check out how we use your data

You have Successfully Subscribed!

Share This