JAKARTA - There is a new phishing scheme that has led many people to hand over their Microsoft 365 credentials. The bad guys used Google Apps Script to automate sending emails to the victims.
Phishing is an increasingly difficult-to-recognizable fraudulent scheme on the internet. Every year, many people lose millions of dollars due to this scam, and events continue to grow. According to the latest report, bad guys use Google Apps Script to launch phishing attacks that steal users' Microsoft accounts.
Phishing occurs when the perpetrator contacts the victim via email, telephone, or text message by claiming to be an official party. If the victim is deceived, they are directed to a fake website designed to steal sensitive information.
Therefore, it is very important to always check phone numbers, email addresses, and websites to make sure you communicate with a company that is truly official. Most companies won't ask for sensitive information by phone. So, if anyone confesses to it from the bank and asks for a credit card or ATM number, it's most likely a scam.
This scheme is actually simple, but managed to trick some people into submitting sensitive data. Cybersecurity researchers in Cofense recently discovered this mode, which started with Google Apps Script a platform that can be used to automate tasks in Google services such as Gmail and Google Docs.
SEE ALSO:
The bad guys used this platform to send emails containing links to fake features' from Google. Most people must be suspicious of Google's unsolicited invoices, but the link is very convincing because it comes from the script address[.]google[.]com, which looks like Google's official domain.
After the victim clicked on the link, a window appeared informing him of a delayed download. If the victim presses the download button, they are directed to a fake Microsoft 365 login page that is almost identical to the original page.
The victim then entered their username and password into this fake site, and the data was immediately sent to the perpetrator. Google Apps Script makes this process run more efficiently and massively.
If you receive a sudden email claiming to contain an invoice from Google, don't click any links in it. Most likely it was a dangerous phishing attempt.
The English, Chinese, Japanese, Arabic, and French versions are automatically generated by the AI. So there may still be inaccuracies in translating, please always see Indonesian as our main language. (system supported by DigitalSiber.id)
