Skip to content

John Hardy Developer

Never stop coding

Home
Lambda
Books
TEC-1
Contact

Pretty clever.

John Hardy Technical Labour May 30, 2017 1 Minute

Pretty clever. How do you fool people into clicking on your GMail change password phishing link by making it look like a legitimate Google link? Why, that’s simple: get Google to steal your brand by using AMP. In the process of subsuming your web presence they hide all your links behind a legitimate looking Google link shortening service.

https://motherboard.vice.com/en_us/article/russian-hackers-are-using-googles-own-infrastructure-to-hack-gmail-users

Share this:

X
Facebook

Like Loading...

Related

Published by John Hardy

Closures are a poor man's object. Objects are a poor man's closure. View all posts by John Hardy

Published May 30, 2017

Post navigation

Previous Post This is a pretty amazing story.

Next Post Who Are the Shadow Brokers? – Schneier on Security

4 thoughts on “Pretty clever.”

Satyr Icon says:

May 30, 2017 at 11:18 am

This is old news though innit?

LikeLike

Reply
Joseph Moosman says:

May 30, 2017 at 11:19 am

I think the phishing email is surprisingly crappy for a supposedly high end attack. I know it worked on some people, but that doesn’t surprise me either. Some people can’t walk and chew gum at the same time.

LikeLike

Reply
eric peacock says:

May 30, 2017 at 11:57 am

I hate AMP

LikeLike

Reply
Peter da Silva says:

May 30, 2017 at 1:35 pm

AMP DELENDA EST

LikeLike

Reply

Leave a comment Cancel reply

Δ

Search for:

Categories

Currently Reading
functional programming
Lambda
TEC-1
Technical Labour
Typescript
Uncategorized
web
webassembly

Archives

Feed

RSS - Posts
RSS - Comments

Create a free website or blog at WordPress.com.

Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use.
To find out more, including how to control cookies, see here: Cookie Policy

Comment
Reblog
Subscribe Subscribed
- John Hardy Developer
- Already have a WordPress.com account? Log in now.

%d

Design a site like this with WordPress.com