Security Advisory
Phishing Alert: Google Docs Phishing
Description
They can come from a Google Account made to look like a member of staff, but will typically have an external email address associated.
Impact
This style of phishing attack can be difficult to identify for users who often use Google Docs to share files and might be expecting similar emails.
The documents themselves aren't typically malicious but if the user doesn't recognize the document as being malicious, the linked pages can steal credentials or link to other types of malicious pages.
Resolution
Simply ignore the request and delete the email; if the document is sent from an unknown address, you weren't expecting a document to be shared or the email seems suspicious.
If you are uncertain about the legitimacy of an email message, forward the email message as an attachment to the IT Support Centre for verification.
In addition, you can report any Google Docs document yourself by clicking the Google Docs "Help" Menu and selecting "Report abuse/copyright"
Resources
These types of phishing attempts succeed because they rely almost entirely on deceiving users, it is recommended you learn their tactics by taking information security awareness training so you can spot these attempts with ease.
You can also review our Phishing Information page to learn about the common indicators of a phishing message.
Questions or concerns? Contact the IS Service Desk or assistance:
Email: Service.Desk@uregina.ca
Phone: 306-585-4685
Toll-free in Canada: 1-844-585-4685
In person at ED 137 or Archer Library