Many users in Vietnam and around the world are becoming targets of a sophisticated scam. Attackers are abusing legitimate Google services to carry out phishing campaigns, exploiting users’ trust in familiar platforms and making malicious activity difficult to detect.

The phishing emails are sent directly from Google’s legitimate systems, allowing them to bypass standard security checks and appear directly in victims’ inboxes. Attackers also exploit Google Tasks by impersonating familiar task notifications, further increasing the likelihood that recipients will lower their guard.

When users click on links embedded in fake emails or fraudulent Google Tasks notifications, they are redirected through multiple intermediary pages designed to conceal the original malicious intent. Victims are eventually led to fake login pages that closely resemble legitimate services, where account credentials can be easily harvested. This campaign has distributed phishing emails to thousands of victims worldwide and has impacted multiple sectors, including technology, finance, manufacturing, services, and retail.

Bkav cybersecurity experts recommend that users and organizations remain highly vigilant when receiving task notifications or emails urging urgent action, even if the messages appear to originate from legitimate domains. Users should carefully verify links before accessing them, enable multi-factor authentication for their accounts, and deploy email security solutions capable of behavioral and content analysis, rather than relying solely on domain-based authentication.

Bkav