We’re all familiar with phishing schemes: an email urging you to login to your PayPal account at this URL (which doesn’t turn out to be PayPal or eBay at all), etc. Most of us have seen enough of these—and enough horror stories circulating on the web or the nightly news—to avoid these scams.
But not everyone has. A post on Google Blogoscoped details the aftermath of one such phishing expedition. After receiving an official-looking email apparently from Google AdWords, one AdWords account owner clicked through on the link and entered his login information. The email had urged him to renew his account before it was deactivated, but he couldn’t find anywhere to do that once he was logged in.