Trouble Nags Google for Tagging China in Gmail Phishing Scam

Jay Decenella, IT audit expert
June 07, 2011 /

Search giant Google was just trying to stir political turmoil when it accused Chinese government officials of hacking Gmail accounts of certain individuals in earlier phishing scams that erupted last week, according to a Chinese Communist newspaper.

People’s Daily slammed Google for implicating China in the recent phishing scams that targeted specific individuals, including senior US government officials, Chinese political activists, officials in several Asian countries (predominantly South Korea), military personnel, and journalists.

A phishing scam would dupe end-users into giving up their credentials by spoofing legitimate Web sites, granting hackers access to their accounts. Afterwards, users are redirected to the legitimate site, not knowing they have already provided their log-in data to phishers.

In turn, these credentials can be used for financial gains. Sophos technology consultant Graham Cluley said the phishing scams would direct users to a spreadsheet on Google Docs.

Google claimed it originated from Jinan, China. In a blog post, Google said: “The goal of this effort seems to have been to monitor the contents of these users’ emails, with the perpetrators apparently using stolen passwords to change peoples’ forwarding and delegation settings.”

Subsequently, Google claimed that it traced the phishing attacks on Gmail accounts to China after it had disrupted the attacks.

However, Hong Lei, spokesman for China’s Ministry of Foreign Affairs, described the implication as coming “out of thin air” and “unacceptable.”

Lei denied allegations that Chinese government officials were involved in the phishing attacks.

Similarly, People’s Daily claimed Google was just trying to stir political unrest between China and USA.

“Google shouldn’t engulf itself in the international political war as a tool for political gaming,” [should there be] “any change in the international atmosphere, I am afraid Google will become a target to be sacrificed by politics, and also will be discarded by the market,” wrote People’s Daily editor Zhang Yixuan.

Google refused to comment on the paper’s editorial, but already passed its evidence of the phishing scam to the Federal Bureau of Investigation.

Meanwhile, security vendor Symantec spotted a fake donation campaign purporting to gather funds for Japanese earthquake victims.

A precedent phishing scam that surfaced during the height of the Japan 9.0 quake spoofed the Web sites of charitable organizations and banks and use those fake sites to lure users.

“This time, they spoofed the German page of a popular payment gateway site with a bogus site that asked for user login credentials,” Symantec said.

 

1 Comment for “Trouble Nags Google for Tagging China in Gmail Phishing Scam”

  1. strelaoz

    David Freer (VP, Symantec Consumer Business Units – Norton, APJ) is a BIG LIAR! He lied to me for more than two and half years for my true feelings, time, and money. Also kept saying I am the only one in his life. Even this year on Feb. 2, he used company line to lead me to have phone sex with him. Until I found out there??????s some other woman, he made up another lie and finally admitted he??????s been living with her for a year. Later, I realized they were all lies. He actually has married March 2009. And now he just totally disappeared and not answering any phone calls, acting like ??????hit & run?????? irresponsible baby. Can you trust someone like this, with no ethics and integrity? The more unbelievable things are David Freer newly-wed wife – SUZY WALSHAM, she shamefully admitted she was the third person who broke up David Freer & his ex 12 years relationships, and mocking at me as the 3rd “unsuspected” person, as she agreed with his husband??????s behaviors!!!!!! SHAME ON both of you, DAVID FREER & SUZY WALSHAM!!!!!!! (THEY BOTH WORK FOR SYMANTEC)

Share your opinion