Gmail Users Beware—Link Hovering Attacks On The Up

Gmail Users Beware—Link Hovering Attacks On The Up

As cybersecurity threats continue to evolve, email users are advised to exercise caution when clicking on links in their emails. One recommended practice is to hover over links to see the URL before clicking on it. This helps identify any suspicious or malicious URLs that may be hidden behind a seemingly harmless link text. However, for Gmail users who access their emails on the web, this safety measure may not be enough to protect them from harm.

Why Hovering Over Links is Important

Hovering over links allows users to see the underlying URL before clicking on it. This helps identify any irregularities in the URL that may indicate a malicious link. For instance, a link that appears to be from a legitimate source may actually be a phishing link with a slight variation in the URL. By hovering over the link, users can spot these variations and avoid falling victim to phishing scams.

Moreover, some links may contain malware or viruses that can harm your computer or steal sensitive information. Hovering over links allows users to see the file extension of the linked page, which can help identify any potentially harmful files.

The Risk of Link Hovering Attacks on Gmail

While hovering over links is a useful safety measure, it may not be enough to protect Gmail users who access their emails on the web. Cybercriminals have found ways to manipulate the URL display when a user hovers over a link, making it appear as though the link is legitimate when it actually contains malware or phishing content.

One way cybercriminals achieve this is by using a technique called “URL padding.” This involves adding unnecessary characters or spaces to the beginning of the URL, which are not visible when the user hovers over the link. The URL display will show only the legitimate part of the URL, hiding the malicious portion from view.

Another technique used by cybercriminals is “zero-width joiner” attacks. In this case, the malicious link is separated from the legitimate part of the URL using a zero-width joiner, which is invisible to the naked eye. When the user hovers over the link, they will only see the legitimate portion of the URL, while the malicious part remains hidden.

Real-Life Examples of Link Hovering Attacks

There have been several instances where cybercriminals have used link hovering attacks to trick Gmail users into divulging sensitive information or downloading malware. In one such attack, hackers sent an email appearing to be from a legitimate source, asking the user to click on a link to update their account information. However, when the user hovered over the link, it displayed a seemingly legitimate URL. But, upon closer inspection, the URL contained a zero-width joiner that led to a phishing site designed to steal login credentials.

In another attack, cybercriminals sent an email containing a link that appeared to be from a popular online service. When the user hovered over the link, it displayed a legitimate URL. However, the link actually contained malware that was downloaded onto the user’s computer when they clicked on it.

How to Stay Safe

Given the risks associated with link hovering attacks on Gmail, it is essential for users to take additional safety measures to protect themselves. Here are some tips to help you stay safe:

  1. Use two-factor authentication: Enable two-factor authentication (2FA) on your Gmail account to add an extra layer of security. This way, even if you click on a malicious link, the hacker will not be able to access your account without the 2FA code.
  2. Keep your browser and operating system up to date: Ensure that your browser and operating system are updated with the latest security patches. This will help protect against known vulnerabilities that cybercriminals can exploit.
  3. Use a reputable antivirus software: Install and regularly update an antivirus software to detect and remove any malware that may have been downloaded onto your computer.
  4. Be cautious with links from unknown senders: Avoid clicking on links from senders you do not know or recognize. If you receive an email from a legitimate source, such as your bank or a popular online service, hover over the link to see the URL before clicking on it.
  5. Use a password manager: Consider using a password manager to generate and store unique, complex passwords for each of your online accounts. This will make it harder for cybercriminals to guess your passwords or use them for phishing attacks.

Conclusion

While hovering over links is a useful safety measure, Gmail users who access their emails on the web should be aware of the risks associated with link hovering attacks. Cybercriminals are constantly finding new ways to manipulate URL displays and trick users into divulging sensitive information or downloading malware. By taking additional safety measures, such as enabling two-factor authentication, keeping your browser and operating system up to date, using a reputable antivirus software, being cautious with links from unknown senders, and using a password manager, you can protect yourself from these threats and ensure your online safety.

_config.yml