Welcome to the VCS IT Help Center!

Check out our step-by-step tutorials, informative knowledge base articles and FAQs, or submit your own questions for support

Is that service or webpage down? Click here to find out --->

Articles in this section

Identifying and Resolving Malicious Web Apps (Google Doc Scam) Follow

Avatar
Mike Annab
  • Updated

This is an example of the kind of invalid emails masquerading as legitimate invitations to collaborate on a Google Doc or Sheet. If you have received this email or one similar, just delete it. 

virus_screen_cap.png

The following is an example of a legitimate email from a colleague sharing a valid Google Sheet with me. Please notice the differences between the email notifications shown above and below.

 

legit_screen_cap.png

If you've opened the malicious email but haven't clicked the link, you're still good. Just delete it. Delete any more you might receive in the near future.

We did create a filter rule on our firewall to block out this sender address, but I expect this address to randomize. 

If you've already clicked the link AND authenticated to your Google account, there is a chance that it will send the same malicious email out to everyone in your address book. There is also a chance that any personal information stored on your computer is, or will be, compromised. 

If you're not sure, please visit http://g.co/securitycheckup to evaluate the security of your Google account. 

If you know you clicked the link and you've authenticated your account (i.e. signed in), immediately reset your VCS password. 

Here is the KB article with step by step instructions for Windows users: https://valleychristian.zendesk.com/hc/en-us/articles/208695346-How-do-I-change-my-Windows-Computer-and-Email-Password

If you are a Mac user, use this KB article: https://valleychristian.zendesk.com/hc/en-us/articles/208694926-How-do-I-change-my-EMAIL-password-on-a-Mac

If you happen to use your VCS password for other services such as banking or credit card accounts, etc., immediately change those passwords. You may also wish to notify your bank and any credit card accounts that your information may have been compromised. 

Lastly, as a courtesy you might consider sending an email or post on Facebook and/or Twitter letting your friends and family know that you've been exposed to malware, and to disregard any email message(s) resembling the one above, which they might receive from you.

Let IT know if you have any questions or concerns via helpdesk@vcs.net or call x2555 if you feel you’ve been infected.

 

 

Related articles

Comments

0 comments

Please sign in to leave a comment.