Today, a massive, fake Google Docs phishing scheme spread across the internet.
The attack worked by sending people emails that imitated how Google emails look when people share real Google Documents with each other. But in this case, the links were from a replica of Google Docs — and if you clicked on them and granted the app permission to access your account, the attack then spammed everyone on your contact list with requests to share more fake Google Docs.
If you've already clicked on a spam link, go to your Google account permissions and revoke access for "Google Docs." The real Google Docs doesn't appear individually in that permissions list since it's part of Google Drive, so you won't be interfering with any of your real work.