Jump to content


Spear phishing at Gmail

  • Please log in to reply
No replies to this topic

#1 AplusWebMaster



  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 02 June 2011 - 03:12 AM


Spear phishers target gov, military officials' Gmail accounts
- http://www.theregist...ishing_exposed/
2 June 2011 - "Google has detected a targeted campaign to collect hundreds of personal Gmail passwords, many of them belonging to senior US government officials, Chinese political activists, military personnel, and journalists. The accounts may have been compromised using spear phishing techniques in which victims received highly personalized messages that contained links to counterfeit Gmail pages, according to a blog post published in February that Google cited when disclosing the attacks* on Wednesday. Google said the campaign “appears to originate from Jinan, China” but didn't share any evidence supporting that claim..."
* http://googleblog.bl...on-is-safe.html
6/01/2011 - "... we recently uncovered a campaign to collect user passwords, likely through phishing. This campaign, which appears to originate from Jinan, China, affected what seem to be the personal Gmail accounts of hundreds of users including, among others, senior U.S. government officials, Chinese political activists, officials in several Asian countries (predominantly South Korea), military personnel and journalists. The goal of this effort seems to have been to monitor the contents of these users’ emails, with the perpetrators apparently using stolen passwords to change peoples’ forwarding and delegation settings... Google detected and has disrupted this campaign to take users’ passwords and monitor their emails. We have notified victims and secured their accounts. In addition, we have notified relevant government authorities..."

- http://www.us-cert.g...phishing_attack
June 2, 2011

F.B.I. to investigate Gmail attacks...
- http://www.nytimes.c...oogle.html?_r=1
June 2, 2011
- http://www.nytimes.c...gewanted=2&_r=2
"... fake document titled “Draft U.S.-China Joint Statement” that was circulated among people with e-mail accounts at the U.S. State Department, the Defense Department, the Defense Intelligence Agency and Gmail. Clicking to download the document directed users instead to a fake Gmail log-in page that captured their passwords..."

China denounces Google's claims...
- http://www.theregist...oogle_response/
2 June 2011

- http://www.h-online....ts-1254369.html
2 June 2011

:grrr: :ph34r:

Edited by AplusWebMaster, 03 June 2011 - 09:04 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...

Member of UNITE
Support SpywareInfo Forum - click the button