US Officials Hit By Gmail Phishing Attack

According to Google official blog phishing attack targeted "senior U.S. government officials, Chinese political activists, officials in several Asian countries (predominantly South Korea), military personnel and journalists." This is an old story time has changed but the aim of that attackers remain same.Phishing or fake page is a famous in which an attacker use some trick to get the credential information.

The attackers once again attack on US officials by using a phishing technique, however Gmail provides an extra security by the feature of 2-step verification. This time an attacker targeted to military and government employees and associates by using crafted email.

This attack is not similar with the normal phishing attack I mean that attacker did not provide any link or attachment of fake pages while they have used some tricks to make a user fool. They made the email look like a form for activating a subscription to a number of publications by The Center for a New American Security (CNAS), a Washington-based think tank.

When the victim has entered the confidential information, the information send to the server located in Houston, Texas, and the user redirected to the Gmail inbox. The attackers has not used any forwarding mechanism and than the account viewed by the attackers to check desired output.
Source: net-security.org

Note: If you want to learn more about Linux and Windows based Penetration testing, you might want to subscribe our RSS feed and Email Subscription  or become our Facebook fan! You will get all the latest updates at both the places.

Other Readings

• US officials incessantly targeted with phishing emails (net-security.org)


• So, Why are Senior U.S. Officials Using Gmail? (pcworld.com)


• Spear phishers renew attack on feds' Gmail (go.theregister.com)


• Google boosts Gmail's anti-phishing feature (macworld.com)