Thursday, 4 May 2017

Google adds new security check to Gmail for Android


google doc under attack


Because phishing scams and threats have indeed proved to be real as the day goes by, Google has introduced a new feature to make it easier for users to protect themselves.

The security feature for Gmail on Android will show a pop-up warning when users click on a suspicious link. While the choice of whether or not to proceed to the website is still left for users to decide, Google believes this warning will encourage people to be more cautious about links they click.

The move comes in the wake of a Google Docs phishing scam recently that gave Google customers access to the contents of emails, contact lists and online documents of victims.



Google revealed the new feature in a post on its G Suite updates blog.
The blog said: 'This week, we're introducing a new security feature in Gmail on Android to help you keep your email safer.

'When you click on a suspicious link in a message, Gmail will show a warning prompt helping you keep your account safe.'

The message will read: 'The site you are trying to visit has been identified as a forgery, intended to trick you into disclosing financial, personal, or other sensitive information.'
 
google message to users
Users will then have the option as to either proceed to the website or delete the message.
Google said: 'While not all affected email will necessarily be dangerous, we encourage you to be extra careful about clicking on links in messages that you're not sure about.
'And with this update, you'll have another tool to make these kinds of decisions



Google says that the feature is being rolled out bits, and will take some time to reach all users worldwide.
It is not clear yet whether the feature will be rolled out to iOS users.
The update follows a malicious email that was flagged recently that included an invitation to view a Google Doc.

Sample of attack email



Users were asked to click on the link, which gave the hackers behind the attack access to the contents of their Google accounts, including email, contacts, and documents.
Not only were victims' accounts controlled by a malicious party but if users followed the instructions, the same email was sent to anyone they had ever emailed and their contacts.


The scam surfaced and appeared to first target journalists - many reporters from BuzzFeed, Hearst, New York Magazine and Gizmodo reported receiving the infected email.


Target Victims had observed that the email sender may be someone personally known to them or someone in their contact list. Victims were asked to click on a link to view a document, which provided the hackers access to the contents of their Google accounts, including email, contacts and online documents, according to security experts who reviewed the scheme.





No comments:

Post a Comment