Google to Experience Huge BEC Phishing Campaign! Experts Claim Fraudsters Lure Forms Tool Users as Preparation

Google users could soon an alarming phishing campaign that could affect a number of people. Security researchers warned the public that fraudsters and other malicious attackers are now targeting Google Forms users.

Google Might Soon Suffer From a HUGE BEC Phishing Campaign! Researchers Claim Hackers Now Targeting Forms Users
LONDON, ENGLAND - AUGUST 09: In this photo illustration, an image of the Google logo is reflected on the eye of a young man on August 09, 2017 in London, England. Founded in 1995 by Sergey Brin and Larry Page, Google now makes hundreds of products used by billions of people across the globe, from YouTube and Android to Smartbox and Google Search. Photo by Leon Neal/Getty Images

They discovered thousands of Google Forms messages sent by different cyber criminals to lure telecommunications companies, retailers, as well as energy and manufacturing companies.

According to SC Magazine's latest report, the current attack is only a preparation for an upcoming massive BEC (Business Email Compromises) phishing campaign.

Fake Google Forms message is just a preparation

Proofpoint Threat Research, a security firm, said in its blog that fraudsters are currently using Google Forms messages to bypass email security content filters based on keywords. The firm's security experts explained that the hybrid attack that uses Google Forms with social engineering attacks is commonly associated with BEC campaigns.

Experts said that the fraudsters' tactic is to lure their victims into believing that they demand a "Quick Task" since they are in a hurry because of a business meeting. They are currently trying to fool Google users into believing that they don't have enough time to finish a certain task.

Google Might Soon Suffer From a HUGE BEC Phishing Campaign! Researchers Claim Hackers Now Targeting Forms Users
LONDON, ENGLAND - AUGUST 09: In this photo illustration, A thumbprint is displayed on a mobile phone while the Google logo is displayed on a computer monitor on August 09, 2017 in London, England. Founded in 1995 by Sergey Brin and Larry Page, Google now makes hundreds of products used by billions of people across the globe, from YouTube and Android to Smartbox and Google Search. Photo by Leon Neal/Getty Images

The cybercriminals will then send a link in the email. This link will direct the users to an untitled file hosted by Google Forms. Their main goal is to trick Google Forms users into sending an email as a response. Why? Because the users will find that the file is blank and doesn't contain any information.

Once the users are fooled, the tricksters will ask their victims to fill in the missing information so that they can have complete access to the file.

What you need to do

Staying anonymous on certain apps or social media platforms will hide your identity and help you avoid scammers and other malicious attackers. To help you further, here's a quick guide you can use so that you can stay anonymous on Google Forms;

Business Insider explained that the first thing you need to do is create a Google Forms file and choose a premade template.

After that, you must go to the Settings icon, which is located at the top-right corner of your screen. Once you are there, you'll find the General tab.

You need to make sure that all the boxes for the "Limit to 1 Response" and the "Collect Email Addresses" are all unchecked or toggled off. Once you are done, all you need to do is save the file.

For more news updates about Google's possible online breachers and other attacks, always keep your tabs open here at TechTimes.

This article is owned by TechTimes.

Written by: Giuliano de Leon.

ⓒ 2024 TECHTIMES.com All rights reserved. Do not reproduce without permission.
Join the Discussion
Real Time Analytics