Today, a massive, fake Google Docs phishing scheme spread across the internet.
The attack worked by sending people emails that imitated how Google emails look when people share real Google Documents with each other. But in this case, the links were from a replica of Google Docs — and if you clicked on them and granted the app permission to access your account, the attack then spammed everyone on your contact list with requests to share more fake Google Docs.
If you've already clicked on a spam link, go to your Google account permissions and revoke access for "Google Docs." The real Google Docs doesn't appear individually in that permissions list since it's part of Google Drive, so you won't be interfering with any of your real work.
After the initial panic subsided, people came up with some jokes.
2002: ILOVEYOU virus offers a pure declaration of love to get a click 2017: u trip over urself for the chance to... collab on a spreadsheet?
oh thank God. I am cool enough to have received that dangerous Google Doc email.
Step 1: Don't click on the Google Docs links Step 2: Don't click on anything at all Step 3: Unplug your computer Step 4: Light it on fire
we ALL know whos behind the google docs
Such a relief when a new Google Doc turns out to just be a virus.
WHAT IF ONE OF THESE GOOGLE DOCS IS REAL THOUGH AND CONTAINS THE SECRET TO HAPPINESS
Coming later in Slate: Why you should click on the Gmail phishing scam
One piece of advice if you opened the scam Google Doc: I am a Nigerian prince & if you Venmo me $100,000, you will be rewarded handsomely
If this kind of email hack sounds familiar, may I present to you several jokes at the Democratic National Committee's expense:
"oh look, huma wants to share a google doc with me"
JOHN PODESTA DO NOT OPEN THAT FAKE GOOGLE DOC
😉
And if you've seen that one episode of Black Mirror, this tweet has you shook:
@gmail
No one's yet claimed responsibility for the hack, but at the end of the day, it's obvious who's really behind it.
go ahead and open that google doc