Gmail Phishing Scam

Gmail Phishing Scam

Laura Nicolescu, Co-Editor-In-Chief

Gmail has reported a recent email phishing scam that is targeting and fooling even the most tech-savvy email users. As a reminder, be vigilant and always pay attention to emails asking you to verify or enter login information.

Phishing works by a hacker who sends an email to your Gmail account using a familiar address, which unbeknownst to you has already been compromised using the same technique. The email comes with a subject line and a thumbnail image of an attachment that the victim has previously sent. Once you click on what you thought was an attachment, you won’t be given a preview. Instead, a new tab opens up and you will be prompted to sign in to Google again.

The sign-in page looks almost identical to the normal Gmail login page, and if you glance at the address bar you will see the words ‘,’ which may prompt you to think that the page is legit. The only indication that something is not right are the words ‘data:/text/html’ in the address bar before the words ‘’ If you’re not paying close attention, you may assume that the URL is safe. If you’re ever unsure if it’s a valid link for the correct company, go directly to the company’s website and log in there instead of using a link from an email message.

Once you input your Gmail username and password, this information goes straight to the attacker, who logs in to your Gmail account right away and collects your contacts’ email addresses. These contacts will then become the new targets.

Aside from your contacts list, the attacker will also have full access to the emails you have sent and received, which can then be used to defraud others.

If you may have inadvertently shared login information with others, please take a minute and change your FISD password, especially if you haven’t changed it in a long time. You must be on the FISD network and visit If it’s the first time you’ve used this website you will need to set up security questions. Make sure you can answer the questions the same exact way in the future should you lock yourself out of your account. This will change the password for your FISD computer login, Student Learning Hub, and Google account. It does NOT change your HAC password.

To learn more about the scam, you can read about it here: MSN article (reposted from UK’s The Week) , IT World Canada article, KTLA article

Any questions can be directed to Digital Learning Coach Penney Matos at [email protected]

Be aware, and stay safe, Titans!