A new wave of phishing attacks has been identified in which hackers exploit a vulnerability in the comments feature of Google Docs to deliver malicious phishing websites to end-users. Avanan, a security firm, observed a “massive wave” of hackers leveraging the comment feature in Google docs. The comment mentions the target with an @, by doing so, an email is automatically sent to that persons inbox. In that email, the full comment, including the bad links and text, is included, making this ripe for impersonators.”]
Source: https://www.bankinfosecurity.com/hackers-exploiting-flaws-in-google-docs-comments-feature-a-18273