Gmail users hit by phishing chat attack

Hackers target Google Chat

Gmail users hit by phishing chat attack

25 February 2009 12:25 GMT / By Verity Burns

It's been a bad 24 hours for Google's Gmail.

First there was Tuesday's outage that left both businesses and individuals with no access to emails for a number of hours. Now IT security firm Sophos is warning Gmail users about phishing attacks targeting them, and being spread via the Google Chat system.

Samples intercepted by SophosLabs revealed that Google Chat users were receiving unsolicited instant messages, urging them to "check out this video" by clicking on a link via the TinyURL service.

However, the link actually directed users to a website called ViddyHo, where users were asked to enter their Gmail usernames and passwords.

Sophos has warned that hackers could then use this information to break into accounts and steal information to commit identity theft.

"We're all used to receiving suspicious communications via email, but these attacks arrived via the instant chat system built into Gmail. As a result, more users may fall unwittingly into the trap", said Graham Cluley, senior technology consultant at Sophos.

"If you think you might have been duped, make sure you change your Gmail password immediately otherwise your entire address book and all your correspondence, including information that you may have archived about other online accounts, will quickly become rich pickings for the hackers".

Sophos research has also shown that 41% of computer users have the same password for a number of sites, and has therefore also urged users to change the password for these as well.

TinyURL has now blacklisted the site, meaning that the link will no longer work, but there are still plenty of URL shortening sites out there for the hackers to use.

Cluley added: "The message is simple. You should always be wary of clicking on unsolicited links whether received over email or IM, and be extremely careful whenever a website asks you to enter your username and password for another site".

Full tags
Software, Online, Google, Email, Gmail
UK Shopping
Amazon.co.uk, play.com, pixmania.co.uk, Currys.co.uk, Dixons.co.uk, 7dayshop.com, ebay.co.uk
US Shopping
Amazon.com, bestbuy.com, ebay.com

share Subscribe to RSS feeds email story save story print story pdf

Comments

  • I have this experience on msn messenger too sometimes, although have never dared to click through the link to see what it brings incase I become infected! Posted by Adam Rhodes, Aylesbury, England

(Will not be published)

  (Next time sign in to bypass captcha)

Latest in Software

Latest on Pocket-lint.com

About Pocket-lint

Pocket-lint is your one stop shop for gadgets, technology and consumer electronics, bringing you the low-down on the latest televisions, cameras, phones, GPS and much more. Whether it's learning about what's hot in the world of Apple, finding out about the latest home cinema kit from Samsung and Sony or merely seeing what not to buy, we have you covered. So check out our reviews, news, comment, hands-on photo galleries and videos. Enjoy.

Pocket-lint.com poll

Q. Do you still buy CDs?

Vote YES Vote NO

» LAST TIME
When asked Do you want the Droid by Motorola? 53% said yes and 47% said no

Top 10 Broadband

Compare 50+
broadband packages

Home Broadband »

Top products

tip us on news

Rss feed

Follow us on Twitter