icon
icon
icon
Aime
Products
News
Market
Portfolio
Brokers
icon
Download
🏷️$300 Off
🏷️$300 Off

News /

Articles /

Articles Details

Coin World · Follow

Quickly understand the history and background of various well-known coins

Ethereum Founder Warns of Advanced Google Phishing Attack

Coin WorldWednesday, Apr 16, 2025 11:25 pm ET
1min read
GOOG --

The founder and lead developer of Ethereum Name Service (ENS), Nick Johnson, has issued a warning to his followers on X about an advanced phishing attack that mimics google to deceive users into divulging their login credentials. The attack leverages Google’s infrastructure to send a fake alert, claiming that the user's Google data is being shared with law enforcement due to a subpoena. This alert passes Google’s DKIM signature check and appears in the user’s inbox without any warnings, even in the same conversation as legitimate security alerts.

The fake subpoena appears to originate from a Google no-reply domain, adding to its legitimacy. Users are given the option to view case materials or protest by clicking a support page link, which is hosted on Google Sites. This tool allows anyone with a Google account to create a site that looks legitimate and is hosted under a trusted Google-owned domain. The scammers use the Google OAuth app, where they can input any desired name in the App Name field, and a domain via Namecheap to set the "From" address as no-reply@google and the reply address as anything they choose.

Johnson explained that the email is forwarded by a private email address, which is a telltale sign of a phishing scam. The scammers exploit Google systems by weaponizing Google Sites and the Google OAuth app to create a convincing phishing attack. The message passes signature validation and appears as a legitimate message in the user’s inbox, even in the same thread as legitimate security alerts.

In response to the phishing attack, a Google spokesperson stated that they are aware of the issue and are in the process of shutting down the mechanism that attackers are using to insert arbitrary text. This will prevent the method of attack from working in the future. The spokesperson also encouraged users to adopt two-factor authentication and passkeys, which provide strong protection against these kinds of phishing campaigns. Google will never ask for any private account credentials, including passwords, one-time passwords, or push notifications, nor will they call users.

Top News
Trump: Chinese President Xi has agreed to export rare earths
Ainvest
17h ago
Trump: Chinese President Xi has agreed to export rare earths
Trump planning to extend TikTok deadline again: WSJ
Ainvest
06/06
Trump planning to extend TikTok deadline again: WSJ
Trump: Treasury Secretary Bessent, Commerce Secretary Lutnick, and USTR Ambassador Greer to meet Chinese representatives in London on June 9, 2025, to discuss trade deal.
Ainvest
06/06
Trump: Treasury Secretary Bessent, Commerce Secretary Lutnick, and USTR Ambassador Greer to meet Chinese representatives in London on June 9, 2025, to discuss trade deal.
Related Articles
Binance CEO Warns of 50% Rise in Phishing Attacks, Urges Users to Act
AInvest
05/17
Binance CEO Warns of 50% Rise in Phishing Attacks, Urges Users to Act
Ethereum Co-Founder Sees Potential to Surpass Bitcoin
AInvest
05/15
Ethereum Co-Founder Sees Potential to Surpass Bitcoin
Ethereum Co-Founder Buterin Calls for Enhanced Resilience and Privacy
AInvest
05/25
Ethereum Co-Founder Buterin Calls for Enhanced Resilience and Privacy
Trending News
Risk Alert: mRNA Vaccine Manufacturers Face Growing Liability Threats Over Safety Data
Nathaniel Stone
05/30
Risk Alert: mRNA Vaccine Manufacturers Face Growing Liability Threats Over Safety Data
President Trump signs executive orders to relax U.S. drone regulations and grant local law enforcement greater authority to neutralize unauthorized drones.
AInvest Wire
16h ago
President Trump signs executive orders to relax U.S. drone regulations and grant local law enforcement greater authority to neutralize unauthorized drones.
View More downArrow
Comments

Add a public comment...
Post
User avatar and name identifying the post author
WorkingCareful7935
04/17
Scammers are using Google's tools like a magic wand, pulling off tricks even Houdini would envy. Google's closing the back door, but don't forget your two-factor authentication. Remember, if it looks too official, it might just be a phish in disguise!
0
Reply
User avatar and name identifying the post author
Nobuevrday
04/17
Holy!the Peak Seeker algorithm successfully identified both trough and apex inflection points in GOOG equity's price action, while my execution latency resulted in material opportunity cost.
0
Reply
No More Comment
Disclaimer: The news articles available on this platform are generated in whole or in part by artificial intelligence and may not have been reviewed or fact checked by human editors. While we make reasonable efforts to ensure the quality and accuracy of the content, we make no representations or warranties, express or implied, as to the truthfulness, reliability, completeness, or timeliness of any information provided. It is your sole responsibility to independently verify any facts, statements, or claims prior to acting upon them. Ainvest Fintech Inc expressly disclaims all liability for any loss, damage, or harm arising from the use of or reliance on AI-generated content, including but not limited to direct, indirect, incidental, or consequential damages.
You Can Understand News Better with AI.
Whats the News impact on stock market?
Its impact is
fork
logo
AInvest
Aime Coplilot
Invest Smarter With AI Power.
Open App