If you received an unexpected email with a link to share a Google Docs file, you’re not alone — and whatever you do, don’t click the link inside. Many people online, including more than a few who should know better, have been bombarded with a phishing email that tries to trick you into opening a fake Google Docs link. If you click through and grant the bogus “Google Docs” app access to your Google account, the bad guys gain access to your email, contact list and anything else that you have in your Google account. The app then spams email to everyone in your contact list and bypasses Google’s usual login alerts, including for two-factor authentication (which you should be using by the way).
As always, you have to be very careful and don’t blindly trust anything you receive via email. Most of the infections we see originate from email attachments or links. We provide our clients multiple layers of protection against threats but it is hard to protect the weakest link – you!