AUSTIN (KXAN) — Here at KXAN we get a lot of emails with a lot of attachments. But when we started seeing multiple emails in our inbox Wednesday afternoon from various senders about a shared Google doc we could download, we knew something was amiss.
The phishing emails are seemingly coming from legitimate Gmail accounts so it’s easy to accidentally click on the link attached. Numerous school districts in Central Texas have fallen victim to the phishing scam, but the emails aren’t coming from the districts’ actual email addresses. All of the emails are also sent to: firstname.lastname@example.org
A spokesperson for Hays CISD says the Gmail account that was phished is an account they use to access their Google drive but not an actual one they use for correspondence. Lake Travis ISD and Hutto ISD were also included in the phishing scam.
It’s unclear who is behind the attack, but it’s spreading like wildfire.
What to do if you clicked the link
- Head over to the My Account page: https://myaccount.google.com/
- Click the “Connected apps & sites” link
- Click Manage Apps
- If you see “Google Docs” under connected apps, remove it. The real Google Docs app doesn’t show up on this list.
- Change your password for good measure