There are many phishing scams. Smart and well designed, but also those that are very casual and prominent. Phishing scams use various methods and aim to intercept their victims' login information to some "interesting" service.
A new scam which appears and is currently being released (according to Lifehacker) is coming from Gmail inbox.
The message seems to include an attachment, which in fact is not what it claims to be. We report this fraud only because it is currently being circulated, not because it is well designed.
The following picture shows what this particular scam looks like:
If you click, as you usually do when you see an attachment, you will be taken to an σελίδα Google where you will be prompted to enter your password.
Of course, the page that will open is false. It is actually a data URI with the prefix "data: text / html", and does not use the usual HTTPS connection you would expect.
https://twitter.com/tomscott/status/812265182646927361
Let's say that Chrome v56.0.2924 προσπαθεί να αντιμετωπίσει θέματα όπως αυτό, εμφανίζοντας ένα μήνυμα "Not Secure" στη γραμμή διευθύνσεων.
In addition to controlling the URL that is essential if you want to protect yourself from such scams, the next time you want to click on a Gmail attachment, you should think it very well.
Generally you should be very skeptical when you meet attachments from people you do not know, but also from people you know because accounts they may have been compromised. After all, you are on the internet, where anyone can claim to be anyone they want.
