Latest Gmail Phishing Very Tough To Spot – Watch Out
July 4, 2009 9:06 am Internet, PopularIf Phishing is a new term to you then please read this post. I have now twice received a message apparently from Google within the past three days that read as follows:
When you click on the link, then you see the familiar Google Gmail Welcome page.
Except that this is not the regular Google page. If you look up at the address field, you will find the URL is on the domain, 
.
Checking WhoIs for this page you will find that the administrative contact is the following person.
Undoubtedly if I had keyed in my Gmail username and password, that gentleman would have had access to my Gmail account and could do whatever he wished with it. Needless to say I immediately changed the password, in case he had already been there.
This is a particularly difficult one to spot, so it is important to be extra vigilant. Google has some good information about Messages asking for personal information. It also provides more detailed information about Suspicious results and strange behavior: Phishing attacks in other words.
You can forward such phishing Gmail messages to phishing@google.com and can send the Phishing URL to the Google Phishing team using their Phishing Report. Google also provides a link to Stopbadware.org, where you can learn more about malware that can infect your computer.
Some phishing attacks are not too difficult to spot, often including spelling mistakes and somewhat curious links. This particular current Gmail phishing incident is highly professional and the only clue is that URL address when you click on the apparent Google link.
Please spread the word rapidly. If you are on Twitter, then please ReTweet the message below.
Undoubtedly many people will be taken in.
![Reblog this post [with Zemanta]](http://img.zemanta.com/reblog_e.png?x-id=5b96cebd-8e1b-4a32-a1e6-2e217ada5b3b)
Go To Top
in the SEO Services Marketplace
BPWrap
July 4th, 2009 at 12:36 pm
Thanks for the heads up. I am generally super careful with any emails. One tip, if you are ever in doubt, is the close the email and then log in to your account direct as normal. If the company requires you to update anything, then there should be an alert in your account control panel.
July 4th, 2009 at 12:39 pm
I’d be a bit suspicious if I received an email, ostensibly from Google, in which they recommended an email product other than Gmail.
But I’m sure a lot of people will fall for this.
July 4th, 2009 at 5:10 pm
How can this be “particularly professional” when they don’t even bother to obfuscate the domain on the landing page?
It’s just nautilusdiving.com? Not g-mail.com, gmial.com, or qmail.com?
Same old same old.
July 4th, 2009 at 5:19 pm
You have a point, CityTrader. Although I’m not sure whether any of the domains you mention would be any more ‘obfuscating’.
July 7th, 2009 at 12:12 am
OMG, the Gmail phishing is becoming better and better now! We should be extremely careful, especially on any link we’re clicking in our Gmail account.
Thanks for the warning, Barry!
July 7th, 2009 at 9:01 am
I’d be a bit suspicious if I received an email, ostensibly from Google, in which they recommended an email product other than Gmail.