As cloud services become more pervasive criminals continue to try and convince corporate users to surrender their identities.
Google Docs is the latest target, so look out!
Flooded with phishing attacks, which staff and students were falling for, the IT team at Oxford University blocked access to Google Docs - hoping to wake up users to the threat..
Would such a technique work in your organisation?
"Please log into Google Docs, and then you'll be able to read my message."
"I've provided a handy link..."
It's child's play to create a Google account, and use the Google Docs facility to host an online form.
But scammers are exploiting Google Docs to phish for passwords and sensitive information.
SophosLabs is warning users not to read too much into docs.google.com URLs.
Two scam campaigns this weekend used Google Docs to attack two very different targets. One had big-four Aussie bank ANZ in its sights; the other was aimed at a large North American school.