As seen in an ITP weekly update. Spear phishing This one will definitely leave a mark and I suspect we'll be seeing waves from it for years to come. Google Docs have become a default mechanism for sharing and collaborating on single documents. For those of you not in the realm of writing stuff for a living, you possibly don't know about the special circle of hell reserved for those who don't track changes or for the group email that results in 50 different versions of the same document that need to be subsumed into one. Google Docs has meant everyone can work on the one piece at the same time and when they've exhausted their pedantic nit-picking about fonts, Oxford commas or whether Kiwi needs to be upper or lower case (upper case for New Zealanders, lower case for the bird or the dollar) then you can simply print it off and be done. Now some bugger has gone and ruined it for all by releasing a nasty phishing attack which sends out a spam inviting you to edit a Google Doc, then raiding your contacts and spamming all of them with the same message. By now it will have more email addresses than there are grains of sand on Whangapoua beach. Google has rushed out the big guns to take on the phish and says it has managed to shut it down (I haven't seen it at all, so I'm pleased about that) but already the damage will be done. These kinds of attacks simply undermine what makes the internet so useful - the openness of it all. One day soon the whole thing will be locked down (I see the newest version of Windows only allows apps to be installed from Microsoft's own app store) and the value and character that makes the internet what it is will be gone. The Verge - Google Docs users hit with sophisticated phishing attack Wired - Don't Open That Google Doc Unless You're Positive It's Legit CNN - Major phishing attack targets Google Docs users