Google Gmail and Phishing
I'm utterly fed up with the vast quantity of dangerous phishing emails
that are sent from Gmail (yes, verified as coming from Google
servers, not spoofed). While Google is pretty good at detecting
INCOMING spams and phishing attempts for Gmail, Google still appears
to permit OUTGOING phishes (that is, to non-Gmail servers) to utterly
flourish.
The majority of these I see every day now come from Gmail. And the
"payload" for many of these are GCP (Google Cloud Platform) servers.
Fake PayPal phishes (that even bypass DKIM checks) are particularly
numerous, but many don't even try to forge the From:, they just use
their Gmail addresses, hoping to entrap as many users as possible.
Does Google care about this? Apparently not, probably because these
are largely the same class of non-techie users Google routinely shows
disdain for (e.g., in account lockout situations).
Do I need to write another formal blog post on this?
L
- - -
--Lauren--
Lauren Weinstein
[email protected] (https://www.vortex.com/lauren)
Lauren's Blog: https://lauren.vortex.com
Mastodon: https://mastodon.laurenweinstein.org/@lauren
Signal: By request on need to know basis
Founder: Network Neutrality Squad: https://www.nnsquad.org
PRIVACY Forum: https://www.vortex.com/privacy-info
Co-Founder: People For Internet Responsibility
_______________________________________________
pfir mailing list
https://lists.pfir.org/mailman/listinfo/pfir
