#wrapper *:not(#noScriptAlert) { opacity: 0.75; } #noScriptAlert { display: block; }

Please turn on your JavaScript for this page to function normally.

Zeljka Zorz, Editor-in-Chief, Help Net Security

September 8, 2010

Gmail phishing campaign is under way

Fake notices inviting Gmail users to update their Google account information have lately been hitting inboxes around the world, warns Sunbelt.

Purportedly coming from the “Google Team”, the rather legitimate-looking message tries to make the users download and open the attached Gmail_access.html file, which when opened in a browser presents a very realistic, but fake version of the Gmail login page:

If it looks realistic, it is because it loads certain graphic elements from the legitimate Gmail page, but a peek at the source code of the page reveals that the entered information gets sent to a script hosted on a domain registered in Serbia.

Featured news

Resources

Don't miss

Cybersecurity news

HNS Daily

Daily newsletter sent Monday-Friday

HNS Newsletter

Weekly newsletter sent on Mondays

InSecure Newsletter

Editor's choice newsletter sent twice a month

Breaking news

Periodical newsletter released whent there is breaking news

Cybersecurity jobs

Weekly newsletter listing new cybersecurity job positions

Open source

Monthly newsletter focusing on open source cybersecurity tools

I have read and agree to the terms & conditions