New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
google amp is used for phishing or scam
Wild spread in email link with below format:
https://www.google.com/amp/s/phishing_domain/#email_address
Saying new PO or ask to download something and etc
Comments
Oh damn. That is smart.
https://cofense.com/blog/google-amp-the-newest-of-evasive-phishing-tactic/
Doesn't look that new.
I got 13 such email samples today,but lucky all bocked under IT review and release
AWS same used for store phishing html or virus,such as:
https://isenhower.s3.amazonaws.com/control_bdd.html?login=[Base64_email_address_here]
Damn. In fact, (unless it has been fixed, googles storageapis can be abused as a link "shortener" (e.g. rather en-lengthener but more legit makinger) as well.