Google AdWords Comes Under Phishing Attack
According to the latest reports released by The Chief Officer's Network on August 8, 2008, Google AdWords/AdSense is reportedly enabling various kinds of frauds and the notorious "click fraud" as one among them in recent days.
These click fraud scams that phishers use try to cheat the user by a phishing assault. And as everyone knows, phishing assaults usually occurs when criminals send fraudulent e-mails with a bogus Website link that helps in stealing personal information by using the name of any reputed bank or a well-known brand.
Meanwhile, according to reports received, the fake message that is being dispatched through e-mails asks the recipient's to update the billing details. It further informs the 'Advertiser' that since Google AdWords/AdSense could not process his (Advertiser's/user's) payment, his advertisements would be withheld and not displayed as long as Google AdWords is able to complete the processing.
Thus, the message said that advertiser's ads would not be suspended if he updates his payment information as well as log into his account and feed his updated payment details.
It then tells the user that it would be looking ahead to supply her or him with some of the best and effective advertising and concludes by thanking the user (Advertiser) for associating with Google AdWords.
At this point, Security Experts at Google stated that those who have configured their e-mail system to read plain text only, the phony e-mail is more or less benign as there is no link- fake or real- to spot.
However, for those who accept html that Microsoft calls Rich Text, the fake features mean inclusion of a link pointing to a fraudulent Website i.e. a phishing site exists.
Hence, security researchers stated that when html is used in an e-mail, it makes phishing a lot easier by hiding the link of a true target as well as by letting the creation of fake letterhead along with fake graphics, background shades and fonts that resemble real letters.
Related article: Google Rectifies Gmail flaw in Three Days
» SPAMfighter News - 22-08-2008