When my co-worker forwarded me an email with a strange link that said “Open in Docs” I was intrigued. The link took me to a screen that asked me to log into my account and then proceeded to ask for permission to “read, send, delete, and manage your email” and also to “manage your contacts”. Ha! Why would I ever allow someone to manage my gmail? I deleted it immediately, but some people proceeded with allowing the phisher to have access. The link has been spread across the internet, affecting more than a million people.
Fortunately, Google was able to stop the campaign within one hour after affecting 0.1% of Gmail users. If you received an email from firstname.lastname@example.org and ignored it, you’re in the clear. But if you’re part of the unlucky few that actually opened it and allowed the hacker access to your email, here’s what you can do to remove his access to your account.