Scammers have launched a phishing campaign on Google’s AdWords platform in a bid to steal usernames and passwords.
According to a post made by internet security firm Sophos, scammers are sending mass emails to web users, claiming that their Google AdWords campaign might have stopped running.
Users who received the emails are prompted to visit a fake Google AdWords log-in page, in order to steal their log-in credentials.
“It's a realistic replica of the main Google AdWords page, created with some care in an attempt to phish your credentials off you. And don't forget, your same username and password will be not just used by Google AdWords, but also Gmail, Google Docs, Google+ and so forth,” Sophos warned.
“In short, your Google username and password are a very attractive commodity to phishers,” the company added.
Therefore, users will not only have their Google AdWords log-in credentials phished but also for other accounts like Gmail, Docs and Google+.
Sophos also performed a "Whois" check on the website, the link for which is given in the email. The check revealed that the website certainly did not belong to Google and was a fake.
The security firm recommends that Gmail users set up a two step verification process for added protection.