Google Spoofed Via DKIM Replay Attack
Quite a clever attack on DMARC; by persuading Google to create a message body that contains the desired phish attack text, then using its legit signing infrastructure to sign the message, an attacker can then "forward" that message to their list of phish victims. Ouch
Tags: phishing dkim dmarc google attacks exploits infosec email smtp