Skip to main content

If you get an email about Google Docs, don't click it

It'll send a scam email to everyone you've ever emailed.

If someone really wants you to check out something on Google Docs, you shouldn't click the link – especially if you weren't expecting the email.

A bunch of emails are going around inviting people to view something on Google Docs, but it turns out it's probably a scam used to disguise a malware email. Redditor JakeSteam laid out what happened to him, noting the email looked legit – it even appeared to be from someone in his contacts.

JakeSteam says when you click on the fake Google Doc link, you're taken to a Google page where you're asked to pick an account. Then you're taken to a new page that asks you to allow Google Docs to access the account.

If you click allow, you're giving this fake Google Docs permission to read, send, delete and manage all your emails and contacts, and then it sends these scam emails to everyone you have ever emailed.

That's why the scam is spreading so quickly. It was trending on Twitter Wednesday afternoon, with people tweeting screen shots of the "sophisticated" phishing email, which doesn't seem to be blocked by spam filters.

It happened to one of our producers too. Within 9 minutes, he got three phishing emails – one on his Gmail account, and two on his work email (see the photo at the top of the page for what one of them looked like).

Mashable has a few tips to help you spot the fake Google Docs email. One of them is the scam emails are being sent from "hhhhhhhhhhhhhhhh@mailinator.com" – you can see this if you expand the sender details.

But if you've clicked through the link, you've already spammed everyone you've ever emailed. However, The Verge says you can revoke future access via Google's “Connected Apps and Sites” page.

The Atlantic says this scam is tricky because it's moving so quickly and because it's not clear what it's trying to do. Phishing emails are usually used to gain access to a person's email or accounts, but the publication says the motivation behind this attack isn't yet known.

In a statement to GoMN, Google said:

"We have taken action to protect users against an email impersonating Google Docs, and have disabled offending accounts. We’ve removed the fake pages, pushed updates through Safe Browsing, and our abuse team is working to prevent this kind of spoofing from happening again. We encourage users to report phishing emails in Gmail." 

For tips on how to stay safe from scam emails like this, click here. And a good rule of thumb is if something asks for a bunch of permissions – like the ability to read, send and manage all your emails and contacts – it's best to not give it permission, The Verge says.

Next Up

7F060B54-5776-4E1A-A42C-F36C22FAF493

Hero dad who stopped carjacker who fled with his kids identified

A GoFundMe has been set up to support Derek Gotchie and his family following the incident.

Screen Shot 2022-12-03 at 4.35.18 PM

Watch: New London-Spicer wins 3A championship on incredible walk-off TD

New London-Spicer defeated the unbeaten Dilworth-Glyndon-Felton in remarkable circumstances.

MoorheadMurderSuspect

Suspect in woman's killing in Moorhead is arrested

James Kollie Jr. was arrested Friday evening.

Jennifer Carnahan

Former chair Jennifer Carnahan sues Minnesota GOP, which is suing her back

Carnahan stepped down under a cloud of controversy in August 2021.

Minneapolis Fire Department

One injured after leaping from burning vacant building in Minneapolis

Authorities say the building is known to be used by squatters.

ambulance

Head-on crash leaves two drivers dead in southeastern Minnesota

The crash happened in Houston County just before 4 p.m. Friday.

ConellHarris

Charges: Armed man made death threats at Minneapolis LGBTQ bar

The man allegedly used derogatory terms while threatening to kill someone.

image

FDA pulls last COVID-19 monoclonal antibody treatment as new variants rise

A therapy used to treat more than 11,000 Minnesotans is no longer authorized amid a surge in the latest COVID-19 variants.

Austin Robert LeClaire

Charges: Plymouth man shot girlfriend in head after birthday party

The 23-year-old victim is in critical condition as of Friday.

image

State announces $2.5M in grants for child care providers

Child care providers in roughly a dozen communities will receive funds to help grow the supply of affordable, quality child care.

image

Probe of Golden Valley police uncovers racism, alleged misconduct

One officer was terminated for alleged racist comments and violations of state law.

blowing snow

Blowing snow Friday in Minnesota; will it snow next week?

Winds could gust up to 50 mph Friday afternoon and night.

Related

If you don't pay for Spotify, you might not get some new albums for 2 weeks

Some Universal artists will be able to make their albums available only for Spotify Premium users for two weeks.

If you don't pay for Spotify, you might not get some new albums for 2 weeks

Some Universal artists will be able to make their albums available only for Spotify Premium users for two weeks.

Facebook is using AI to help people who may be considering suicide

It's one of the latest updates to Facebook's suicide prevention tools.

Watch out for this Netflix 'payment declined' phishing email scam

The message looks legitimate, and tries to trick users into giving up credit card info,