This phishing scam has been making the rounds on the Internet – targeting and fooling Gmail users around the world. Wordfence and Fortune has the report. The attacker pretends to be a familiar contact, sends an email with an attachment to the target user. On clicking the attachment, it opens an identical (forged) Google login page that is crafted to steal your login credentials.
Here is what you need to know: Opening an attachment by design does not brings up a login page, if it does, you can be sure that you’re being phished. Only exception is if your login session has expired, but that usually never happens while you’re in the middle of opening up an email. If you don’t instinctively grasp this concept, you will always fall for this kind of scam.
Categories: Cyber Crime