Don't Open the 'Google Docs' Email You Just Got - and What to Do if You Did

Advertisement
By Brian Fung, The Washington Post | Updated: 4 May 2017 12:32 IST
Highlights
  • There was a Google Docs invitation with a link reaching Gmail users
  • It happened out to be a phishing scam
  • Google has taken action against this phishing scam
Don't Open the 'Google Docs' Email You Just Got - and What to Do if You Did

If you've received an invitation to join a shared Google Doc that you weren't expecting, you might want to steer clear of it. It's probably a phishing scam that could compromise your account.

Internet users everywhere are being spammed with what appear to be malicious invitations to log on to their Google accounts. Unlike your garden-variety cyber-attack, many of the telltale signs that could tip you off that something is awry are absent.

For example, the attack appears to work by tricking you into logging into your actual Google account, then granting a third party (your attacker) access to your account's data. Having gained permission to access your contacts, the attacker then fires off spam invites to everyone in your address book.

What makes this attack so tricky to detect is that it takes advantage of Google's legitimate tool for sharing data with responsible third-party apps. Since the bogus invitation is being routed through Google's real system, nothing is misspelled, the icons look accurate, and it's hard to know something's gone wrong until it's too late.

Advertisement

Google said Wednesday that it is working to ensure this type of "spoofing" doesn't happen again.

"We have taken action to protect users against an email impersonating Google Docs, and have disabled offending accounts," the company said in a statement.

Advertisement

Staff at The Washington Post, students at New York University and even workers at the US Agency for International Development have received warnings from IT administrators not to open the emails. Here is one such notice, obtained by The Post.

Here's one clue for identifying the fraudulent email: Included on the string of recipients is an email address that begins "hhhhhhhhhhhhhh" and ends in "mailinator.com," a website that lets visitors obtain a temporary and disposable email address.

Advertisement

So, until you hear otherwise, it's probably best to hold off on any Google Docs usage for now. If you've clicked the link in the malicious email, you can revoke the attacker's access by visiting ...

https://myaccount.google.com/permissions

... and deleting the "Google Docs" app - which is the one pretending to be legitimate.

© 2017 The Washington Post

 
Post your comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Google Docs, Phishing, Internet, Google Docs Phishing Scam, Google
Google Allo Update Brings Chat Backup, Link Previews, and More; Duo Hits 50 Million Downloads on Android
Nokia Said to Plan Sale of Its Undersea Cables Unit
Advertisement

Related Stories

Google Expands Gemini in Google Docs to Android Devices, Available in Over 20 Languages
11 June 2025
Google Docs Gets Upgraded With Gemini AI-Powered ‘Help Me Create’ Feature for Workspace Users
9 December 2024
Google Docs Gets Upgraded With Gemini-Powered Text-to-Image Generation Feature
18 November 2024
Google Docs Gets New ‘Document Tabs’ Feature to Help You Organise Your Doc Files Better
8 October 2024
Google Workspace Update Brings a New Vids App, Generative AI Features
10 April 2024
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Vivo Y400 Pro 5G With 5,500mAh Battery Launched in India: Price, Features
  2. iPhone 16 Pro, iPhone 16 Pro Max Price Discounted on Flipkart: See Offers
  3. Oppo Reno 14 5G Series Global Launch Scheduled for This Date
  4. Vivo X Fold 5 India Launch Timeline Tipped: All Details
  5. Oppo Find X9 Pro Leak Suggests Potential Camera Specifications
  6. Samsung Galaxy S24 FE Gets a Price Cut on Amazon: See Offer
  7. Nothing Headphone 1 Renders Leaked Ahead of July 1 Launch: See Design
  8. Samsung Galaxy Buds Core Listed Online, Revealing Design, Specifications
#Latest Stories
  1. Samsung Galaxy S24 FE Gets a Price Cut on Amazon: See Offer
  2. Samsung Galaxy Buds Core Listed on Company Site; Design, Specifications Revealed
  3. iPhone 18 Pro Series Tipped to Get Hole-Punch Selfie Camera, Hidden Face ID System
  4. iPhone 16 Pro, iPhone 16 Pro Max Available at Discounted Prices on Flipkart: See Offers
  5. Oppo Reno 14 5G Series Global Launch Date Announced; Amazon, Flipkart Tease Online Availability in India
  6. Gigabyte Aorus Master 16 AI PC With Intel Core Ultra 9 Chip, Up to GeForce RTX 5080 GPU Launched in India
  7. Google Suffers Setback in Fight Over EU’s EUR 4.1 Billion Fine
  8. Vivo X Fold 5 India Launch Reportedly Set for Mid-July
  9. Trump Extends Deadline for US TikTok Sale to September
  10. Nothing Headphone 1 Renders and Live Images Leak Ahead of July 1 Launch; Shows Unique Design
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.