ECONOMY & WORK
MONEY 101
NEWS
PERSONAL FINANCE
NET WORTH
About Us Contact Us Privacy Policy Terms of Use DMCA Opt-out of personalized ads
© Copyright 2023 Market Realist. Market Realist is a registered trademark. All Rights Reserved. People may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.
MARKETREALIST.COM / NEWS

Beware of the new Phishing Attack Which Uses Google Forms; Here's how the Tactic Works

BazaCall phishing scammers are stepping up their game by incorporating Google Forms into their deceptive campaigns. Evolving their tactics, they exploit false urgency and use dynamic URLs, making it challenging for traditional security measures to detect.
PUBLISHED DEC 31, 2023
The Google logo is projected onto a man on | Getty Images | Photo by Leon Neal
The Google logo is projected onto a man on | Getty Images | Photo by Leon Neal
The image of the Google logo is reflected on the eye of a young man | Getty Images | Photo by Leon Neal
The image of the Google logo is reflected on the eye of a young man | Getty Images | Photo by Leon Neal

Google and the services it offers from mail to documents to online forms as well as drive, have become integral parts of life for people working online. But this digital exposure and credibility that the tech giant offers, can also be exploited to fool unsuspecting victims. In a concerning development, the notorious BazaCall phishing scammers are adopting new tactics to enhance the authenticity of their malicious campaigns. Security experts have detected a shift in their modus operandi, with the threat actors now leveraging Google Forms to add a layer of credibility to their deceptive schemes.

The BazaCall phishing attacks, initially observed in 2020, have become more sophisticated with time. In these attacks, cybercriminals send emails disguised as legitimate subscription notices, prompting recipients to contact a so-called support desk urgently. The ruse is to dispute or cancel a fictitious plan, with potential charges ranging from $50 to $500.

To manipulate victims, the attackers induce a sense of urgency, urging targets to engage in a phone call. During this call, scammers convince victims to grant remote access using desktop software, claiming to assist in canceling the alleged subscription. Popular services like Netflix, Hulu, Disney+, Masterclass, McAfee, Norton, and GeekSquad are often impersonated to lure unsuspecting victims.

In the latest variant of BazaCall attacks, cybersecurity firm Abnormal Security has identified the use of Google Forms as a tool to collect details related to fake subscriptions. The attackers cleverly enable response receipts in the form, sending copies of the responses to the victim's email. This manipulation is designed to make the responses appear as payment confirmations for legitimate services, such as Norton Antivirus.

Sitting in front of computer terminals, young people send and receive e-mail at an internet cafe | Getty Images | Photo by Robert Nickelsberg
Sitting in front of computer terminals, young people send and receive e-mail at an internet cafe | Getty Images | Photo by Robert Nickelsberg

The choice of Google Forms introduces an additional layer of cunning, as responses originate from the trusted domain "forms-receipts-noreply@google.com." This tactic increases the likelihood of bypassing secure email gateways, enhancing the phishing campaign's effectiveness. Moreover, Google Forms' use of dynamically generated URLs makes it challenging for traditional security measures to detect and block threats, as these URLs constantly change.

The adoption of Google Forms by BazaCall scammers showcases their adaptability and willingness to exploit trusted platforms. This evolution in tactics, combined with the use of dynamic URLs, poses a significant challenge to conventional security measures. As threat actors continue to refine their methods, organizations and individuals must stay vigilant against phishing attempts to safeguard their sensitive information.

BazaCall's incorporation of Google Forms into their phishing attacks highlights the ever-changing landscape of cybercrime. The blending of social engineering tactics with trusted platforms highlights the need for continuous cybersecurity awareness and advanced threat detection measures. As the threat landscape evolves, security experts emphasize the importance of staying informed and adopting proactive security measures to mitigate the risk of falling victim to such deceptive schemes.

MORE ON MARKET REALIST
'Jeopardy!' contestant reveals what becoming a champion feels like: 'Proud to be a nerd'
JEOPARDY
'Jeopardy!' contestant reveals what becoming a champion feels like: 'Proud to be a nerd'
Joseph Evans dethroned poet, Joyelle McSweeney to become the new champion.
1 hour ago
Nvidia CEO says China ‘will win’ AI race with US — and then quickly corrected himself
NEWS
Nvidia CEO says China ‘will win’ AI race with US — and then quickly corrected himself
Following Huang's striking comment, Nvidia took to X to soften the blow.
1 hour ago
Elon Musk could become world's first trillionaire — it all depends on Tesla shareholders
NEWS
Elon Musk could become world's first trillionaire — it all depends on Tesla shareholders
Musk has to achieve a few objectives to win the support of Tesla shareholders.
16 hours ago
Peaches sold at Costco, Walmart, Trader Joe's recalled nationwide over possible Listeria risk
COSTCO
Peaches sold at Costco, Walmart, Trader Joe's recalled nationwide over possible Listeria risk
The FDA issued a voluntary recall over concerns about Listeria contamination.
1 day ago
'Wheel of Fortune' fans confused by tough puzzle that cost a contestant $55,000 in bonus round
WHEEL OF FORTUNE
'Wheel of Fortune' fans confused by tough puzzle that cost a contestant $55,000 in bonus round
Fans expressed that they too were stumped by the unusually tough puzzle.
1 day ago
'Price is Right' player makes stunning comeback — wins a car after he almost lost everything
PRICE IS RIGHT
'Price is Right' player makes stunning comeback — wins a car after he almost lost everything
Despite landing on 'Lose Everything' twice, LeRoy Quinn won the biggest prize.
1 day ago
Trump's OBBBA offers $10,000 tax rebate on car loans — but here's why it's useless for most Americans
NEWS
Trump's OBBBA offers $10,000 tax rebate on car loans — but here's why it's useless for most Americans
According to AOL's calculations, the rebate is a niche perk catering to people with high incomes.
2 days ago
Trump admin warns grocery stores against offering discounts to SNAP recipients
NEWS
Trump admin warns grocery stores against offering discounts to SNAP recipients
The directive comes after the Trump administration froze SNAP Payments from November 1.
2 days ago
Costco is giving members huge car deals this Christmas — here’s how to get one
COSTCO
Costco is giving members huge car deals this Christmas — here’s how to get one
The retailer is offering special discounts to its Gold Star, Business, or Executive level Members.
2 days ago
'Jeopardy!' host Ken Jennings apologizes after latest clue causes backlash: 'I hope he'll forgive me'
JEOPARDY
'Jeopardy!' host Ken Jennings apologizes after latest clue causes backlash: 'I hope he'll forgive me'
Fans were shocked and tickled to see the issue blow out of proportion on social media.
2 days ago
'Jeopardy!' champion Aaron Levine's winning streak has ended — but there's more to his TV career
JEOPARDY
'Jeopardy!' champion Aaron Levine's winning streak has ended — but there's more to his TV career
Apart from acing clues on Jeopardy!, Levine has a long list of TV accolades.
6 days ago
Home Depot shopper reveals the store's secret return policy on plants that surprised him
NEWS
Home Depot shopper reveals the store's secret return policy on plants that surprised him
The TikTok creator was shocked to find out how generous Home Depot is.
6 days ago
'Family Feud' host Steve Harvey left unhappy after finding out the answer to the G.O.A.T. of comedy
FAMILY FEUD
'Family Feud' host Steve Harvey left unhappy after finding out the answer to the G.O.A.T. of comedy
Harvey wasn't impressed with what the show's audience had to say about him.
6 days ago
'Antiques Roadshow' guest in disbelief after expert revealed the value of her century-old toy boat
ANTIQUES ROADSHOW
'Antiques Roadshow' guest in disbelief after expert revealed the value of her century-old toy boat
The owner of the model Marklin Puritan boat promised never to put it in her swimming pool again.
6 days ago
'Wheel of Fortune' contestant stuns Ryan Seacrest with her choice of letters to win $55,000
WHEEL OF FORTUNE
'Wheel of Fortune' contestant stuns Ryan Seacrest with her choice of letters to win $55,000
The contestant, Abi McLaughlin, entertained the viewers throughout the night with her gameplay.
6 days ago
'Wheel of Fortune' player screams during his celebration after solving an easy puzzle to win a car
WHEEL OF FORTUNE
'Wheel of Fortune' player screams during his celebration after solving an easy puzzle to win a car
The contestant, Stephen James, couldn't stop yelling and giggling after his big win.
6 days ago
'Family Feud' host Steve Harvey was taken aback by a bizarre question related to hamburgers
FAMILY FEUD
'Family Feud' host Steve Harvey was taken aback by a bizarre question related to hamburgers
Harvey had a hard time roasting the players who kept coming up with smart answers.
6 days ago
Walmart customer reveals why the store's latest move to prevent shoplifting is annoying
WALMART
Walmart customer reveals why the store's latest move to prevent shoplifting is annoying
The video showed how the new tech takes even more time to unlock doors.
7 days ago
'Family Feud' host Steve Harvey loses his cards on stage while clapping for controversial answer
FAMILY FEUD
'Family Feud' host Steve Harvey loses his cards on stage while clapping for controversial answer
Harvey later regretted clapping for the controversial answer, being a married man.
7 days ago
'Family Feud' host Steve Harvey goes wild with his reactions to match a team's energy
FAMILY FEUD
'Family Feud' host Steve Harvey goes wild with his reactions to match a team's energy
Harvey was very invested in the game and reacted to every answer with enthusiasm.
7 days ago