With scammers on a constant watch out for new attack vectors there appears to be a new flaw in the Google Drive allowing them to push legitimate looking emails & notifications addressed from Google luring victims into opening the document and clicking on a very large and tempting link to malicious website.

- Unlike the regular spam via email which Google is pretty good at filtering out looking for potential malicious links, this scam appears to be bypassing the spam filters and makes it directly into the user's Mailbox and Notification Centre.
- The scammers are allegedly working through a huge list of gmail accounts and sending the notifications in Russian and English asking victims to collaborate on the documents.
- The Google community forums has noticed an influx of users complaining about being bombarded with notifications to collaborate on documents.
- Google's spokesperson has stated that the Company has already measures set up in place to detect the new spam attacks and stop them, however highlighted that no security measures will be 100% effective.
- Experts from Kaspersky Lab are highligting that this is not that trivial task for Google to address given how easy it is to get a hold of legitimate Gmail account.