A serious email phishing campaign occurred earlier yesterday, attempting to steal Google credentials and hijack Google accounts. If you may have received a phishing message is from someone you may or may not know who would like to share a Google Doc with you.  The email appears to be sent to hhhhhhhhhhhhhhhh@mailinator.com.

Current Status

Google has taken the malicious sites offline and they have also taken steps to block further spread of the attack. Microsoft is working very hard to eradicate any messages that may be in their system as well. There are a growing number of reports in the press.

Cleanup

If you clicked on the link and entered your Google credentials, you need to change your Google password as soon as possible. Finally, if you accidentally clicked on “Allow,” go to https://myaccount.google.com/u/0/permissions?pli=1 to revoke permissions.

If you have further concerns, please contact the IT Help Desk.