More trouble for Gmail as phishers attack
When it rains, it pours. Convincing phishing attacks target Gmail after its outage earlier this week.
Gmail was hit with more trouble this week as its users were targeted with a phishing campaign that spread through the connected real-time Google Talk IM system.
The issue came soon after Gmail had been knocked offline for two-and-a-half hours due to a problem with an overloaded data centre, which had a knock-on effect on other data centres.
The phishing attack used a social engineering technique whereby GTalk users were tricked into clicking a link directing them to a ViddyHo login page asking for login credentials.
Once the victim entered their Google account information, the criminal could then use it to break into their account and send the link to other users in the victim's address book or buddy list.
In a statement to the Wall Street Journal, Google confirmed that it was a phishing attempt, and encouraged users to be very careful when sharing information.
Graham Cluley, security consultant at Sophos, said: "If you were unfortunate enough to fall for this scam- make sure you change your Gmail password immediately."
"In fact, also change your passwords on any other site where you might be using the same password as on Gmail."
Get the ITPro. daily newsletter
Receive our latest news, industry updates, featured resources and more. Sign up today to receive our FREE report on AI cyber crime & security - newly updated for 2024.
He claimed that around 41 per cent of people used the same password for every site they accessed, which meant that an attack like this could have disastrous consequences.