Cybercriminals have discovered a new method for online fraud, now using Google Forms to steal users' bank details and login information. These forms, distributed via phishing emails, appear legitimate as they run on Google's servers, deceiving people into sharing their personal information.
Google Form Scam: Online fraud cases have seen a recent surge, with cyber fraudsters adopting Google Forms as their latest weapon. Phishing emails are being sent to users in many countries, including India, impersonating banks or other trusted organizations. The links in these emails lead users to forms that resemble genuine portals, where they are asked for passwords, card details, and other sensitive information. Experts state that awareness and vigilance are the most effective measures to prevent this new scam.
Google Form Becomes New Tool for Fraud
Online fraud incidents are continuously increasing, and cybercriminals have now started utilizing Google Forms. While previously used for general tasks like surveys or event registrations, criminals are now exploiting this platform to steal people's bank details and login information. Because these forms run on Google's legitimate servers and the links begin with docs.google.com, users often mistake them for genuine and fall victim to the deception.
How Do Scammers Trick Users?
This scam primarily originates from phishing emails, designed to appear as if they are from trusted entities like banks, office administrators, or even acquaintances. Sometimes, fraudsters hack a user's email account to send fake emails, further reducing the chances of suspicion.
Upon clicking the link in the email, users are directed to a Google Form that mimics the authentic portal of a bank or company. Here, sensitive information such as passwords and card details is requested. Often, links that initiate malware downloads or fake phone numbers are also included. The biggest challenge is that fraudsters create such forms repeatedly with new links, rendering security software ineffective in detecting them.
How to Protect Yourself from This Scam?
According to cyber experts, never enter passwords or payment details into any Google Form. Avoid clicking on unsolicited emails or suspicious links, especially those that pressure you to take immediate action. If an email claims to be from a bank or office, verify it directly with the concerned institution.
It is also important to pay attention to the messages at the bottom of a Google Form. Typically, there are warnings like "Never submit passwords" or "Content is neither created nor endorsed by Google." Additionally, every Google Form has a Report button. If any form appears suspicious, report it immediately to prevent harm to others.
What to Do If You Accidentally Share Information?
If you have inadvertently shared any sensitive information, change your passwords immediately and notify the relevant institution, such as your bank or office. If necessary, their cyber security department can assist you. Also, keep your mobile and computer updated to protect against potential malware.
