A flaw in the comments feature of Google Docs is allowing attackers to target users with phishing emails. Security researchers at email security company Avanan have observed what they call, “a new, massive wave of hackers” using the comment feature in Google Docs during December to launch attacks, mainly against Outlook users. It works by hackers adding a comment to a Google Doc. The comment mentions the target with an @. By doing this an email is automatically sent to that person’s inbox. In that email the full comment, including any bad links and text, is included. Further, the email… [Continue Reading]