Google docs used for phishing

In the past 24 hours, Information Security has been made aware of multiple cases of phishing attempts via shared Google documents. The specific examples I have seen have been sent from a gmail address (itsservice005‌ and have been named Faculty Evaluation.docx. A familiar UNI personal name is associated with the gmail account, probably changing as the recipients change.

If you receive a shared document offer like this, please use the gmail tools to report the message as phishing and then delete the message. If you find the document within your Google drive, you should:

  • Right click on it, choose Report Abuse from the drop-down, and mark it as Phishing on the ensuing page.
  • ITTC 36
  • (319) 273-5555
  • Service Hub