Phishing attack hits Gmail chat

Gmail users have had a rough time of it this week. Just a few hours after the hugely popular webmail service cratered on Tuesday morning, the instant-messaging feature associated with the site became the target of a phishing attack.

Gmail users have had a rough time of it this week. Just a few hours after the hugely popular webmail service cratered on Tuesday morning, the instant-messaging feature associated with the site became the target of a phishing attack.

The New York Times Bits blog has a post explaining the mechanics of the attack, which essentially mirrors other IM-based scams in which users receive a link from someone on their buddy lists. The link, of course, takes the victim to a phishing site that tries to steal the user’s Gmail credentials.

Google is already on the case.

In a statement released Tuesday night, Google said it had taken steps to help curb the spread of the scam.

“We have blocked the addresses being used to send these messages,” the statement read. “Users of Firefox, Safari, and Google Chrome will receive a phishing warning when trying to visit the ViddyHo.com site.”

Suggested articles

It’s Not the Trump Sex Tape, It’s a RAT

Criminals are using the end of the Trump presidency to deliver a new remote-access trojan (RAT) variant disguised as a sex video of the outgoing POTUS, researchers report.

biggest headlines 2020

The 5 Most-Wanted Threatpost Stories of 2020

A look back at what was hot with readers — offering a snapshot of the security stories that were most top-of-mind for security professionals and consumers throughout the year.