Post Content

 

dej7zss9d9hsj3ymhpjr05cju6k4z6mThe unusual worm that landed in the mailboxes of Google’s Gmail users last week was a sophisticated identity phishing scam that quickly spread to various other contacts. Scammers were able to get users to open a malicious link using one the oldest tricks in the scamming playbook: sending it through an email from an existing contact. The email, which was very authentic looking, appeared to be a GoogleDocs link that your trusted contact wanted to share with the recipient.

Google acted quickly, deactivating the fake accounts and warning users via social media, still the malware spread quickly. Users who opened the link authorized a legit-looking app called “Google Docs” to manage your emails. The app, which isn’t associated with Google, gave scammers access to Gmail accounts. The link was then emailed to contacts. But what’s worse is that scammers could now potentially access anything linked to that account, giving them the opportunity to gather personal information, reset passwords, or take over Facebook or online bank accounts.

Tips for Gmail users:

  • Look at the email address of the sender. Many scam-savvy users opened the address field and discovered the email was sent from an account ending in malinator.com. That’s a sure sign it’s a fake.
  • Sign-up for two-factor verification.
  • Take the time to change your Google password.
  • Google recommends that users do the Google Security Checkup. This will allow you to check your settings and activity, as well as show you the apps you have approved. If you downloaded the fake app, be sure to delete it immediately.
  • Activate spam filters. They are designed to detect and block emails sent from abnormal or faulty addresses. If you see that an apparently important message has been filtered as spam, check it carefully to ensure it is not from a spoof email address.
  • When in doubt, ask the sender if they emailed a link. If they didn’t, delete it and report it to Google.

Google also maintains a list of common scams related to their business. Read about them here.

If you have additional questions, contact the Office of Consumer Affairs and Business Regulation by calling our Consumer Hotline at (617) 973-8787, or toll-free in MA at (888) 283-3757, Monday through Friday, from 9 am-4:30 pm. Follow the Office on Facebook and Twitter, @Mass_Consumer. The Baker-Polito Administration’s Office of Consumer Affairs and Business Regulation along with its five agencies work together to achieve two goals: to protect and empower consumers through advocacy and education, and to ensure a fair playing field for all Massachusetts businesses. The Office also oversees the state’s Lemon Laws, data breach reporting, Home Improvement Contractor Program and the state’s Do Not Call Registry.

Written By:

Recent Posts

Energy Bill Scam Calls posted on Feb 23

Energy Bill Scam Calls

Many staff from our Office have been receiving incessant phone calls regarding their energy bills. Luckily, we know a scam when we hear one. We called the scammer back after receiving 3 calls, each listing a different call back number along with different reference numbers.   …Continue Reading Energy Bill Scam Calls

For Sale Buy Online Owner posted on Feb 20

For Sale Buy Online Owner

It is becoming increasingly common for dealerships and private sellers to advertise their cars through a website, through an app, or through social media. Because different laws may apply depending on the details of each listing, the Office of Consumer Affairs and Business Regulation seeks   …Continue Reading For Sale Buy Online Owner

Getting down to business or getting scammed? posted on Feb 13

Getting down to business or getting scammed?

  The Federal Trade Commission (FTC) recently issued a warning after hearing from several consumer protection agencies about scammers taking advantage of people looking to get licensed in a particular profession. These fraudsters lie and say they can help you get professional or business licenses.   …Continue Reading Getting down to business or getting scammed?