A scam has picked up in Australia, and that’s bad news for anyone who thinks someone they know might be sending them an important document.
Your inbox wakes up with a message, an alert from a friend that you have received an “important eDocument”, and it even has the date in the subject line.
‘It must be important,’ you think to yourself, ‘it says important and today’s date.’
So you click the link expecting an important document from today to come online. But that’s not what happens, and even though you should be logged in already to your Google account, up pops a system asking you to login again.
What do you do?
In this case, you’ll want to check the domain at the top of the webpage and see if it’s a scam, because in this case, it most certainly is, as a Google Docs “eDocument” scam makes itself known around the web.
Someone sent one to GadgetGuy this week, and we’re reporting it to you, highlighting how you can pick up on this scam, and how to avoid other ones like it.
A picture of the initial email is in the picture above, and while it might look semi-official (though also not really), the link you’re supposed to click on doesn’t come from Google, which you can see if you click on it, directing the user to a URL shortener and then through to a website without Google in the title.
In general, you shouldn’t click on these links, but if you do, pay attention to the domain it comes from, because while it is possible to come up with a fake clone, most of the scammers out there aren’t even bothering with something quite so complicated, and are assuming people won’t check.
For this case, the URL we’re taken to is “buyppcheck.com”, a domain we’ve never heard of which obviously isn’t Google.
Not helping this is the pixelated image of the Google Drive webpage, with a little window on top waiting for you to fill in your email provider.
But people caught by this scam wouldn’t likely have noticed the URL up top, nor would they have noticed the request for a supposed Google webpage to let them login with a Yahoo, Outlook, or even AOL account, something Google isn’t likely to do.
Instead, people who are caught by this sort of scam may have entered their details in the first place, an action which not only leaves your email and password open to theft, but also will perpetuate this scam, allowing it to be sent to other users.