PANews reported on April 16 that ENS developer nick.eth posted a warning about a highly sophisticated phishing attack he recently encountered. The attackers exploited a vulnerability in Google's infrastructure, disguising themselves as an official email and bypassing DKIM verification. The email was sent from no-reply@google.com and deemed safe by Gmail. The embedded link pointed to a phishing page under a "google.com" subdomain, guiding users to a simulated login interface to steal credentials. nick.eth urged users to be vigilant and not to trust domain appearances.
