Hackers crack every security measure.
After a massive security breach at Yahoo, a new grand scam is targeting Gmail.
The tactics is so smart that it can outwit even an expert. However, one needs to be quite alert to these issues once properly guided.
Let’s see how it works.
The hacker sends you an email using a familiar address (who has already become a victim) to your inbox, with a subject line and an attachment that was already being sent by the victim. On clicking on the perceived attachment, a new new tab opens up asking you for signing up to Google again.
However, you need to know the difference.
The sign-in page looks similar to the normal Gmail login page with even the address ‘accounts.google.com,’ which might lead you to think that everything is OK; however, on close attention, you will see some additional words ‘data:/text/html’ in the address before the words ‘accounts.google.com.’, that’s where your bells must ring. You must not consider it a legitimate URL.
If you are somehow befooled by it, and you feed your particulars to the sign-in tab, your information will be stolen to be further exploited, including everything available on your ID.
The scam was first detected by Wordfence, which further shared some very helping instructions.
The company is well informed of the scam and is reportedly trying to overcome the issue by strengthening its existing cyber-defences.
The company’s spokesperson told media that they help users avoid such attacks in a variety of ways:
- machine learning based detection of fake emails
- Safe Browsing warnings
- preventing suspicious account sign-ins, and more.
He suggests that users can activate two-step verification for additional account protection. However, even if you become a victim, you can do the the following:
Make sure there is nothing before the words ‘accounts.google.com’ other than ‘https://’ and the green lock symbol in the address bar when you log in.
The research by Norton by Symantec shows that every Britain out of four has been a victim of this scam in the last year.
Therefore, UK consumers spend 1.8 Pound Sterling on curbing cybercrimes across the country.