All the latest UK technology news, reviews and analysis


Google Apps users warned of Red Cross phishing threat

19 Jan 2013
Concept image of URL bar and fishing hook representing phishing

Security experts are warning users to be vigilant following the discovery of a new phishing operation which targets Google Apps.

Researchers at Sophos said that the attack poses as a Google log-in screen and is hosted on what appears to be a compromised page within the Ethiopian Red Cross site.

According to Sophos, the attack arrives in the target's inbox as an unsolicited note about a supposed order. The message asks the user to log into what they claim is a Google Docs hosted document in order to review an invoice.

When the user clicks on the link, however, they are redirected to a phishing site designed to resemble the Google Docs log-in screen. The page then asks the user to enter log-in credentials which are presumably harvested by attacker to perform account hijackings.

What is most peculiar about the attack, however, is its choice of host domain. Researchers believe that the phishing page is the result of a breach on the Ethiopian Red Cross website.

"At first glance, you might imagine you are logging into Google Docs to see the content from the email's sender - but a closer examination of the URL bar reveals that this isn't Google at all that you're visiting, but instead a phishing page hidden away on the Ethiopian Red Cross Society's website," Sophos senior technology consultant Graham Cluley wrote in a blog post.

"Of course, you shouldn't enter your credentials on the page - as they are likely to end up in the hands of cybercriminals."

The sites of government agencies, nonprofits and educational institutions have in the past been popular targets for breaches which can lead to the uploading of phishing pages. Users are advised to avoid clicking links in unsolicited email messages and check the URL address of any page which asks for log-in credentials.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

Microsoft Azure outage

Is cloud computing reliable enough for business yet?
10%
7%
21%
62%

Popular Threads

Powered by Disqus
iPhone 6 is available in silver gold and space grey

iPhone 6 video review

The best iOS handset to date

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

UX RESEARCHER - WEST END - LONDON

UX RESEARCHER - WEST END - LONDON. My Client is a major...

DIGITAL PRODUCT DESIGNER - WEST END - LONDON

DIGITAL PRODUCT DESIGNER - WEST END - LONDON. My Client...

Web Developer - HTML, CSS, JavaScript, C# - Wiltshire / Swindon

Web Developer - HTML, CSS, JavaScript, jQuery, C# - Wiltshire...

.NET Developer - C# ASP.NET MVC, TDD/BDD - Media - London

.NET Developer - C# ASP.NET MVC, TDD/BDD - Media - London...
To send to more than one email address, simply separate each address with a comma.