Gmail users beware!! A new phishing attack has been developed by the hackers to play with users personal information. Mark Maunder CEO of WordPress security service Wordfence, first discovered this attack and he has also pointed that this Gmail hacking attack has also managed to fool even technology-savvy users. This online scam is getting huge day by day. Gmail has become vulnerable to a phishing attack and users are getting trapped in this scam.
What exactly is happening?
Attackers are sending emails with an attachment and once the user has clicked on the attachment then he/she will be redirected to a sign-in page. Once the user enters the account details then attacker gets access to all his/her details stored in the mail and attacker will also get the access to the applications linked to that email address.
Then how to avoid this phishing attack?
Users have to make sure there is nothing before the hostname ‘accounts.google.com’ other than ‘https://’ and a lock symbol. Before signing in to any service, users should check browser location bar and verify the protocol.
Users can also consider enabling two-factor authentication for Gmail. Even if the attacker has somehow managed to steal the password, two-factor authentication makes it difficult for the attackers to sign into the service user is using.