[CyberSecurity] Corrected remediation info - Beware Google phishing attacks!!
OneNet Security
cybersecurity at lists.onenet.net
Thu May 4 15:34:14 CDT 2017
All,
Ian Koetter with OU has provided the following information which is the correct action any compromised user should take to revoke permissions. Thanks Ian!
It is said that Google has remediated the application in their web services already, but:
Changing your password has little effect in this case because you granted permissions for access to your contacts list. Google account passwords were not compromised.
To remediate, you will need to go to https://myaccount.google.com/u/0/permissions?pli=1 and remove the "google docs" application API permissions, if it still exists.
https://isc.sans.edu/diary/22372
If you have users whose were caught by this phishing campaign and compromised, please provide the above information to them, so they can correctly remediate the compromise.
Best,
Barbara McCrary
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.onenet.net/pipermail/cybersecurity/attachments/20170504/2b0a75bc/attachment.html>
More information about the CyberSecurity
mailing list