Phishers Use Google Docs Comments to Send Malicious Links

By Ava McKinneyOnline Safety

Phishers Exploit Google Docs Comments to Deliver Malicious Links

Cybersecurity experts have identified a new phishing trend: attackers are leveraging the commenting feature in Google Docs to send emails that appear legitimate and trustworthy. Since many organizations rely on Google Docs for collaboration, notifications from this service have become commonplace, making these phishing campaigns potentially far-reaching.

How the Attack Works

By using Google Docs, cybercriminals can bypass traditional email security measures. The phishing emails are technically sent by Google itself, which means they are unlikely to be flagged or detected by most security systems.

According to specialists, this method has been in use since October of last year. Although Google has attempted to address the issue, the vulnerability still exists, allowing attackers to continue targeting organizations.

Details of the Phishing Technique

Researchers from Avanan have highlighted recent attacks of this kind. In these campaigns, attackers leave comments in Google Docs containing anything from malicious links that download malware to URLs leading to phishing sites designed to steal login credentials.

One notable aspect is that the attacker’s email address does not appear in the notification; only their name is visible to the recipient. This makes the phishing email look even more authentic and increases the likelihood of the recipient clicking on the malicious link.

Other Google Services at Risk

Avanan also warns that the same technique can be used with Google Slides. Employees should exercise extra caution when working with both Google Docs and Google Slides to avoid falling victim to these phishing attacks.

How to Stay Safe

  • Be cautious of unexpected Google Docs or Slides notifications, especially those containing links.
  • Verify the sender’s identity before clicking on any links in comments or notifications.
  • Report suspicious activity to your IT or security team immediately.

Staying vigilant and educating employees about these tactics is crucial to protecting your organization from phishing threats exploiting Google’s collaboration tools.

Leave a Reply