~Toughbooktalk~ Rob - 630-300-8877

The largest Toughbook discussion site on the net!
It is currently Thu Mar 21, 2019 4:28 am

All times are UTC-06:00

Post new topic  Reply to topic  [ 1 post ] 
Author Message
PostPosted: Sun May 25, 2014 11:56 am 
Toughbooktalk Moderator
User avatar

Joined: Sat Mar 28, 2009 7:59 pm
Posts: 2624
Everyone...We are seeing new spam coming up going to Google Docs links, if you see a post like this do not click on it, report the post so me or Rob can deal with it.

Cyber thieves are luring victims to give up personal information using legit-looking forms in Google Docs

Spammers have been exploiting cloudlike products for years to send spam -- think Hotmail or Gmail. But now they're taking greater advantage of cloud computing, employing techniques and traversing avenues we haven't seen before.Among the many cloud services being abused are Google's popular offerings, including Google Docs and Google+. Users and organizations alike need to be aware of these threats and prepare accordingly.
Phishers are using Google Docs to trick users in revealing confidential information. This attack method works as follows: Phishers create forms to collect and summarize data in Google Spreadsheets and Docs. These forms, which phishers design to look as though they come from a legitimate third-party domain, such as a bank, provide places for victims to enter personal identification and log-on information.
Using built-in form functionality, phishers send email message to a list of prospective targets. The message contains a simple URL linking to the form. One giveaway that you're looking at a potential phishing form and not a trusted site is a URL that takes you to a spreadsheet.google.com address, containing the command word "formkey" at the end, follow by an equal sign and the form's randomly generated identifier link. Often the forms are protected by HTTPS, so it's difficult for organizations to intercept or inspect them.
Many users are probably already aware of these new spamming and phishing attacks, but I bet many others aren't. Consider this your wake-up call that a new attack paradigm is out there, and vendor defenses either aren't in place yet or aren't very sophisticated. Right now, until our traditional antispam and antiphishing tools come up to date on these avenues of attack, we defenders are left with our own homegrown custom protection and end-user education.

:spinny: Blair :spinny:
CF-19 MK1 /2 Emissive Keyboard * CF-28 MK3
CF-30 MK2 , Intel SSD, 4GB , GPS, W7 Ultimate , Bluetooth, Emissive Keyboard
CF-51 MK3LL Core 2 Duo T7600 Mod , W7, 4GB Ram, 160GB 7200RPM HDD, Finger Print Reader
CF-52MK1 Core2Duo 2GHz, Intel SSD X25 Series ,4GB , BT with dock
CF-52 MK4 i5‑2540M 2.60GHz, ATI Discrete Graphics, Intel 120GB SSD, 16GB,W7 Pro 64bit
CF-53MK1 i5/2520, Kingston Hyper X SSD 240GB, 16GB memory, W7 Pro 64bit with dock
And the little guys CF-M34 MK3 and MK7
Infologix / MediSlate 10.4" tablet
Cel Google Pixel XL
Member of:

Display posts from previous:  Sort by  
Post new topic  Reply to topic  [ 1 post ] 

All times are UTC-06:00

Who is online

Users browsing this forum: No registered users and 2 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Limited