Don’t open that document…or that attachment…or that link!

Who Is It Targeting: Computer users

What Is It: A phishing attack disguised as a Google Doc

What Are They After: A rampant internet scam made the rounds last week, and even though the damage has been cleaned up, it should still serve as a wakeup call to internet users. While most email users should know not to open an attachment or click a link in an email if they weren’t expecting it—even if it comes from someone they think they know—this worm attack was spread through shared Google Docs.

Opening the Google Doc allowed the worm to install and root through your contacts list, which then sent the worm on to all of those people. Google uncovered the malicious account and blocked the worm, so if you opened it, you should need only change your password in order to protect yourself.

How Can You Avoid It:

  • It’s a good idea to change your password routinely, but especially following a major cybercrime event.
  • Never click a link, open an attachment, or (now) open a Google Doc unless you were specifically expecting it.
  • This is still true even if the sender appears to be someone you know.

If you think you may be a victim of identity theft, contact the Identity Theft Resource Center for toll-free, no-cost assistance at (888) 400-5530. Find more information about current scams and alerts here. For full details of this scam check out this article from