Go to the U of M home page

Tuesday, March 15, 2016

Phishing Example 134: Detecting Fake Google Doc Logins ("Shared PDF")

Detected March 2016

A fake google drive login is being sent to the UMN community - via this email.

Subject: Shared PDF
From:
To:
Hello,
 It's not an attachment -- it's stored online at Google Drive. To open
 this document,Go to hxxp://drive.com <hxxp : //ow.ly/xxxxx> and just sign in
with your email to view.
Best Regards.
NOTE: 
  • claims to go to google, links instead via ow.ly to hide the real URL


The login page looks like this:

NOTE: 

  •    There is NO Google logo.
  •    This offers a place to provide Email AND Password
  •    This has a drop-down menu for MULTIPLE email services
GOOGLE LOGINS DO NOT LOOK LIKE THIS!

Here is what a real Google login would look like:



NOTE:
  •  New san-serif logo at top
  • Only asks for email address
  • Offers NO choices of mail provider

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.