Attackers exploit flaw in Google Docs’ comments feature
January 7, 2022 |
A wave of phishing attacks identified in December targeting mainly Outlook users are difficult for both email scanners and victims to flag, researchers said. Attackers are using the “Comments” feature of Google Docs to send malicious links in a phishing campaign targeted primarily at Outlook users, researchers have discovered.
Advice from this article: “Cross-reference the email address in the comment to ensure it’s legitimate before clicking on a Google Docs comment” and “If unsure, reach out to the legitimate sender”.