ECONOMY & WORK
MONEY 101
NEWS
PERSONAL FINANCE
NET WORTH
About Us Contact Us Privacy Policy Terms of Use DMCA Opt-out of personalized ads
© Copyright 2023 Market Realist. Market Realist is a registered trademark. All Rights Reserved. People may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.
MARKETREALIST.COM / NEWS

Beware of the new Phishing Attack Which Uses Google Forms; Here's how the Tactic Works

BazaCall phishing scammers are stepping up their game by incorporating Google Forms into their deceptive campaigns. Evolving their tactics, they exploit false urgency and use dynamic URLs, making it challenging for traditional security measures to detect.
PUBLISHED DEC 31, 2023
The Google logo is projected onto a man on | Getty Images | Photo by Leon Neal
The Google logo is projected onto a man on | Getty Images | Photo by Leon Neal
The image of the Google logo is reflected on the eye of a young man | Getty Images | Photo by Leon Neal
The image of the Google logo is reflected on the eye of a young man | Getty Images | Photo by Leon Neal

Google and the services it offers from mail to documents to online forms as well as drive, have become integral parts of life for people working online. But this digital exposure and credibility that the tech giant offers, can also be exploited to fool unsuspecting victims. In a concerning development, the notorious BazaCall phishing scammers are adopting new tactics to enhance the authenticity of their malicious campaigns. Security experts have detected a shift in their modus operandi, with the threat actors now leveraging Google Forms to add a layer of credibility to their deceptive schemes.

The BazaCall phishing attacks, initially observed in 2020, have become more sophisticated with time. In these attacks, cybercriminals send emails disguised as legitimate subscription notices, prompting recipients to contact a so-called support desk urgently. The ruse is to dispute or cancel a fictitious plan, with potential charges ranging from $50 to $500.

To manipulate victims, the attackers induce a sense of urgency, urging targets to engage in a phone call. During this call, scammers convince victims to grant remote access using desktop software, claiming to assist in canceling the alleged subscription. Popular services like Netflix, Hulu, Disney+, Masterclass, McAfee, Norton, and GeekSquad are often impersonated to lure unsuspecting victims.

In the latest variant of BazaCall attacks, cybersecurity firm Abnormal Security has identified the use of Google Forms as a tool to collect details related to fake subscriptions. The attackers cleverly enable response receipts in the form, sending copies of the responses to the victim's email. This manipulation is designed to make the responses appear as payment confirmations for legitimate services, such as Norton Antivirus.

Sitting in front of computer terminals, young people send and receive e-mail at an internet cafe | Getty Images | Photo by Robert Nickelsberg
Sitting in front of computer terminals, young people send and receive e-mail at an internet cafe | Getty Images | Photo by Robert Nickelsberg

The choice of Google Forms introduces an additional layer of cunning, as responses originate from the trusted domain "forms-receipts-noreply@google.com." This tactic increases the likelihood of bypassing secure email gateways, enhancing the phishing campaign's effectiveness. Moreover, Google Forms' use of dynamically generated URLs makes it challenging for traditional security measures to detect and block threats, as these URLs constantly change.

The adoption of Google Forms by BazaCall scammers showcases their adaptability and willingness to exploit trusted platforms. This evolution in tactics, combined with the use of dynamic URLs, poses a significant challenge to conventional security measures. As threat actors continue to refine their methods, organizations and individuals must stay vigilant against phishing attempts to safeguard their sensitive information.

BazaCall's incorporation of Google Forms into their phishing attacks highlights the ever-changing landscape of cybercrime. The blending of social engineering tactics with trusted platforms highlights the need for continuous cybersecurity awareness and advanced threat detection measures. As the threat landscape evolves, security experts emphasize the importance of staying informed and adopting proactive security measures to mitigate the risk of falling victim to such deceptive schemes.

MORE ON MARKET REALIST
12-year-old boy emails Costco CEO asking to help with fundraiser. He made sure to 'do whatever it takes'
COSTCO
12-year-old boy emails Costco CEO asking to help with fundraiser. He made sure to 'do whatever it takes'
Grant Cerwin sent an email to Craig Jelinek asking if Costco could donate one of the famous 93-inch teddy bears for his middle school fundraiser in LA.
8 hours ago
Maryland dad hits $50,000 lottery prize but couldn't find his ticket. Then, he realized it's laundry day.
NEWS
Maryland dad hits $50,000 lottery prize but couldn't find his ticket. Then, he realized it's laundry day.
The man said that his girlfriend often tosses clothes into the washing machine without checking their pockets.
17 hours ago
Kind woman offers pizza to a 'homeless' man in New York — she had no clue he's a Hollywood icon
NEWS
Kind woman offers pizza to a 'homeless' man in New York — she had no clue he's a Hollywood icon
The A-list actor was extremely happy with the food and blessed her and her family.
19 hours ago
Guy tries to deposit $1,200 at a Citibank ATM to pay his mortgage. Then, the machine froze.
NEWS
Guy tries to deposit $1,200 at a Citibank ATM to pay his mortgage. Then, the machine froze.
The video has gone viral and people are responding with their own scary experiences at ATMs.
20 hours ago
A single mom is asked to clean a 4-bedroom home — then, came a surprise that changed her life
NEWS
A single mom is asked to clean a 4-bedroom home — then, came a surprise that changed her life
The organization asked Simmons' employers to send a deserving candidate and they nominated her.
21 hours ago
Man who kept collecting pennies for 45 years finally cashed them in for an incredible amount
NEWS
Man who kept collecting pennies for 45 years finally cashed them in for an incredible amount
A "gift from God," Otha Anders started collecting pennies after he found one lying on the ground.
1 day ago
You can now earn $2,500 by just watching your favorite holiday movies — here's how to apply
NEWS
You can now earn $2,500 by just watching your favorite holiday movies — here's how to apply
Perks of the job also include year-long subscriptions for all major streaming services.
1 day ago
An elderly Kroger cashier was living in a homeless shelter. A stranger’s kindness turned it around.
NEWS
An elderly Kroger cashier was living in a homeless shelter. A stranger’s kindness turned it around.
The TikToker turned out to be a philanthropist who has dedicated his life to make dreams come true.
1 day ago
Boy, 9, gives teacher his $15 birthday cash and a note. When his parents read it, they were in tears.
NEWS
Boy, 9, gives teacher his $15 birthday cash and a note. When his parents read it, they were in tears.
The parents were surprised when they found a note written in response to the child's gesture.
1 day ago
Elderly woman tries to sell her $30 table on Facebook — she narrowly escaped losing $3,000 a day
NEWS
Elderly woman tries to sell her $30 table on Facebook — she narrowly escaped losing $3,000 a day
The woman got an email that looked authentic with the transaction platform's logo at first.
2 days ago
Dad gives his 6-year-old son $600 to buy whatever he wants — how he spent it moved him to tears
NEWS
Dad gives his 6-year-old son $600 to buy whatever he wants — how he spent it moved him to tears
The child was putting items in the shopping cart but then suddenly started unloading it.
2 days ago
Struggling 82-year-old Walmart cashier can finally retire — all thanks to a stranger who raised $100,000
WALMART
Struggling 82-year-old Walmart cashier can finally retire — all thanks to a stranger who raised $100,000
The man was finally able to pay off his debt and spend time with his family in Florida after years.
2 days ago
'Antiques Roadshow' guest tears up after learning the value of 'national treasure' blanket behind his chair
NEWS
'Antiques Roadshow' guest tears up after learning the value of 'national treasure' blanket behind his chair
The guest got emotional since the family hadn't seen much wealth for generations.
3 days ago
A 93-year-old grandma was fighting a legal battle for her land. Then, Snoop Dogg stepped in to help.
NEWS
A 93-year-old grandma was fighting a legal battle for her land. Then, Snoop Dogg stepped in to help.
Apart from the hip-hop legend, NBA star Kyrie Irving was another celebrity among the donors.
3 days ago
Shark Tank's biggest ever miss was sold for $1 billion and used by millions of Americans every day
NEWS
Shark Tank's biggest ever miss was sold for $1 billion and used by millions of Americans every day
Jaime Siminoff, whose pitch was rejected by all but one shark, walked out without a deal. He returned to the show as a millionaire investor.
4 days ago
Charlie Sheen no longer cashing in on ‘Two and a Half Men’ reruns — it got worse after selling his rights
NEWS
Charlie Sheen no longer cashing in on ‘Two and a Half Men’ reruns — it got worse after selling his rights
Actor Charlie Sheen is most known for his role on syndicated tv show 'Two and a Half Men.' How much are reruns paying him?
5 days ago
Costco member reveals the 'worst part' about being a member — and it's oddly relatable
COSTCO
Costco member reveals the 'worst part' about being a member — and it's oddly relatable
Others commented sharing their own experiences with salespeople pestering them.
5 days ago
Fan asks Jelly Roll to pay her $40,000 college tuition at a concert — his response changed her life
NEWS
Fan asks Jelly Roll to pay her $40,000 college tuition at a concert — his response changed her life
The woman said that Jelly Roll's music had inspired her to overcome bullying and alcoholism.
5 days ago
Mom tells gamer son not to play Fortnite — he wins $1 million and gifts her a new home instead
NEWS
Mom tells gamer son not to play Fortnite — he wins $1 million and gifts her a new home instead
Jaden became the youngest millionaire in the history of e-sports after his performance at the tournament.
6 days ago
Struggling woman with toddler cleans a stranger's home for $2 — not realizing it would soon be hers
NEWS
Struggling woman with toddler cleans a stranger's home for $2 — not realizing it would soon be hers
The woman had been struggling financially as her parents were old and she had to care for the toddler.
6 days ago