Hello all,
We are starting to see some really scary fraudulent messages coming through. So far, the ones I’ve seen look like the following (though below the link which would appear at “Open in Docs” is removed):
John Doe has invited you to view the following document:
Open in Docs
The scary thing (to me) about these is:
- The links actually go to legitimate Google pages. You’re not actually giving your password out to anyone but Google.
- You are then prompted with a permissions page from Google, asking to grant access to what it says is “Google Docs” but you’re really being asked to give permission to a third party to your email account. See the bottom of this message for an example of what you see if you were to have clicked on this message.
If you have received one of these recently and responded (by clicking the link, signing in, and granting access), please email me as soon as you get a chance. It isn’t a simple matter of changing your password. You have to revoke access to third party applications
You may want to look at what services/apps you have granted access to your Gmail account. See the following link for information from Google on this:
https://myaccount.google.com/permissions?pli=1
An example of this is below:
Clicking where it says "Google Docs" shows the info below:
