The Morning Brew: Don't click on that random Google Drive link
It's Thursday. Don't click on that random Google Drive link. Here's a news summary:
Don't click on that random Google Drive link
Don't do it.
Journalists, including those at The Oklahoman, got a sneaky e-mail Thursday.
The scope of the attack is not limited to news organizations, but appears to be spreading on a massive scale through people’s contacts. If you’re concerned your account has been compromised, you can go to Google’s security page to adjust permissions. (Look for “manage apps,” and revoke access to untrusted apps.)
Several IT experts are describing the attack as huge, startlingly fast-moving, and perplexing. Just in the course of writing this short post, I received two separate emails that appear to be part of the attack. In one Reddit thread, where people are trading information about the attack, someone describes the scam as “almost undetectable.” But there are clues to look out for—both of the suspicious emails I received were sent to an odd email address, firstname.lastname@example.org, with me blind-copied.
The scam works fast because it raids your contacts, reported The New York Times:
Here's what to do if you clicked: