ENS founder warns of Google spoof that tricks users with a fake subpoena

17.04.25 05:11 Uhr

Werte in diesem Artikel
Aktien

140,18 EUR -0,40 EUR -0,28%

0,10 EUR 0,00 EUR 2,56%

Indizes

PKT PKT

19.571,0 PKT 26,1 PKT 0,13%

17.446,3 PKT -15,0 PKT -0,09%

2.694,7 PKT 1,9 PKT 0,07%

5.569,1 PKT 8,2 PKT 0,15%

The founder and lead developer of Ethereum Name Service has warned his X followers of an “extremely sophisticated” phishing attack that can impersonate Google and trick users into giving out login credentials. The phishing attack exploits Google’s infrastructure to send a fake alert to users informing them that their Google data is being shared with law enforcement due to a subpoena, ENS’ Nick Johnson said in an April 16 post to X. “It passes the DKIM signature check, and GMail displays it without any warnings - it even puts it in the same conversation as other, legitimate security alerts,” he said. The fake subpoena appears to be from a Google no-reply domain. Source: Nick JohnsoAs part of the attack, users are offered the chance to view the case materials or protest by clicking a support page link, which uses Google Sites, a tool that can be used to build a website on a Google subdomain, according to Johnson. “From there, presumably, they harvest your login credentials and use them to compromise your account; I haven’t gone further to check,” he said.The Google domain name gives the impression it’s legit, but Johnson says there are still telltale signs it’s a phishing scam, such as the email being forwarded by a private email address. Scammers exploit Google systems In an April 11 report, software firm EasyDMARC explained that the phishing scam works by weaponizing Google Sites. Anyone with a Google account can create a site that looks legitimate and is hosted under a trusted Google-owned domain.They also use the Google OAuth app, where the “key trick is that you can put anything you want in the App Name field in Google,” and use a domain via Namecheap that allows them to “put no-reply@google account as From address and the reply address can be anything.”Source: Nick Johnson “Finally, they forward the message to their victims. Because DKIM only verifies the message and its headers and not the envelope, the message passes signature validation and shows up as a legitimate message in the user’s inbox — even in the same thread as legit security alerts,” Johnson said. Google deploying countermeasures soon Speaking to Cointelegraph, a Google spokesperson said they are aware of the issue and are shutting down the mechanism that attackers are using to insert the “arbitrary length text,” which will prevent the method of attack from working in the future. Related: Hackers hide crypto address-swapping malware in Microsoft Office add-in bundles“We’re aware of this class of targeted attack from the threat actor, Rockfoils, and have been rolling out protections for the past week. These protections will soon be fully deployed, which will shut down this avenue for abuse,” the spokesperson said. “In the meantime, we encourage users to adopt two-factor authentication and passkeys, which provide strong protection against these kinds of phishing campaigns.” The spokesperson added that Google will never ask for any private account credentials — including passwords, one-time passwords or push notifications, nor call users.  Magazine: Your AI ‘digital twin’ can take meetings and comfort your loved onesWeiter zum vollständigen Artikel bei Cointelegraph Weiter zum vollständigen Artikel bei Cointelegraph

In eigener Sache

Übrigens: Alphabet A (ex Google) und andere US-Aktien sind bei finanzen.net ZERO sogar bis 23 Uhr handelbar (ohne Ordergebühren, zzgl. Spreads). Jetzt kostenlos Depot eröffnen und als Geschenk eine Gratisaktie erhalten.

Ausgewählte Hebelprodukte auf Alphabet A (ex Google)

Mit Knock-outs können spekulative Anleger überproportional an Kursbewegungen partizipieren. Wählen Sie einfach den gewünschten Hebel und wir zeigen Ihnen passende Open-End Produkte auf Alphabet A (ex Google)

NameHebelKOEmittent
NameHebelKOEmittent
Wer­bung

Quelle: Cointelegraph

Nachrichten zu Alphabet A (ex Google)

Wer­bung

Analysen zu Alphabet A (ex Google)

DatumRatingAnalyst
25.04.2025Alphabet A (ex Google) BuyJefferies & Company Inc.
25.04.2025Alphabet A (ex Google) OverweightJP Morgan Chase & Co.
25.04.2025Alphabet A (ex Google) OutperformRBC Capital Markets
23.04.2025Alphabet A (ex Google) OutperformRBC Capital Markets
15.04.2025Alphabet A (ex Google) BuyJefferies & Company Inc.
DatumRatingAnalyst
25.04.2025Alphabet A (ex Google) BuyJefferies & Company Inc.
25.04.2025Alphabet A (ex Google) OverweightJP Morgan Chase & Co.
25.04.2025Alphabet A (ex Google) OutperformRBC Capital Markets
23.04.2025Alphabet A (ex Google) OutperformRBC Capital Markets
15.04.2025Alphabet A (ex Google) BuyJefferies & Company Inc.
DatumRatingAnalyst
15.05.2019Alphabet A (ex Google) verkaufenCredit Suisse Group
24.11.2008Google sellMerriman Curhan Ford & Co
19.11.2008Google ausgestopptNasd@q Inside
16.03.2007Google Bär der WocheDer Aktionärsbrief
08.03.2006Google im intakten AbwärtstrendDer Aktionär

Um die Übersicht zu verbessern, haben Sie die Möglichkeit, die Analysen für Alphabet A (ex Google) nach folgenden Kriterien zu filtern.

Alle: Alle Empfehlungen

Buy: Kaufempfehlungen wie z.B. "kaufen" oder "buy"
Hold: Halten-Empfehlungen wie z.B. "halten" oder "neutral"
Sell: Verkaufsempfehlungn wie z.B. "verkaufen" oder "reduce"
mehr Analysen