From the Duo security blog: The Latest Phishing Attacks Target Gmail, Microsoft Word & Android Apps
We’ve released two security enhancements to Gmail that help protect you from phishing attempts.
- Going forward, email address will be visible next to the display name for senders that aren’t in your Contacts list.
- We now scan messages and alert you if the sender may have spoofed a Gmail address.
Good – issue #1 there has irritated me for a long time.
Interesting tidbit on how the FBI tracked down a Russian spammer:
So how did the FBI get its man this time around? By busting the US-based distributor of fake Rolex watches who used Mega-D to send a good chunk of his spam. That led them on a trail that culminated in ePassporte, a money transfer service, and they found Nikolaenka’s name and e-mail addresses attached to his account.
Nikolaenko had made another mistake: the e-mail accounts were Gmail addresses, and it was no trouble at all for the US to get a subpoena, forcing Google to cough up the account information. FBI agents found copies of the botnet software and much else of interest among the e-mails.
Thank you, Google, for enabling another feature I have long longed for.
Gmail now offers users the ability to switch between conversation view and the traditional message-based unthreaded view. When a user switches to unthreaded view, messages are no longer grouped together into a conversation, and each message is shown as a separate entry in the inbox. The inbox is still sorted in reverse chronological order.
Nice! Being able to drag-and-drop attachments into Gmail brings it a huge leap forward in ease-of-use and desktop integration.
– You can now drag and drop attachments directly onto a message when composing a new message.
– You can now insert a calendar invitation directly from the compose window in Gmail.
If you’ve been reluctant to use this Beta feature, you can now use it in production once the domain admin for your Google Apps domain enables it, then each user can choose to enable Offline Gmail.