Email security specialists Avanan have reported that hackers have been leveraging the comment feature in Google Docs to target primarily Outlook users. The attack works by hackers adding a comment to a Google Doc mentioning the target with an @.
This automatically sends an email from Google to that target person’s inbox which contains bad links to malware or phishing sites. To protect themselves, users should cross-reference the email address in the comment to ensure it’s legitimate, scrutinize links and inspect grammar, and deploy protection that secures the entire suite.
