请问HN:为什么谷歌会容忍来自其自身域名的Gmail冒充行为?
几周以来,我一直收到冒充Gmail的垃圾邮件。这些邮件总是包含指向 https://storage.googleapis.com/rightsmoves/... 的链接。邮件的样子是这样的:<p>https://imgur.com/xyXfPI8<p>甚至连谷歌自己的Gemini也知道这是个骗局:<p>> URL https://storage.googleapis.com/rightsmoves/ 指向一个名为“rightsmoves”的特定Google Cloud Storage存储桶。根据最近的安全数据和网页扫描,这个存储桶与恶意活动有关,特别是网络钓鱼和“流量窃取”计划。<p>我已经通过Google Cloud Platform的滥用报告表单多次举报,但他们对此置之不理。<p>这是谷歌的完全无能吗?为什么他们会允许自己域名下的骗局存在?
查看原文
For several weeks now I've been receiving spam impersonating Gmail. It always contain link to https://storage.googleapis.com/rightsmoves/... The email looks like this:<p>https://imgur.com/xyXfPI8<p>Even Google's own Gemini knows it's a scam:<p>> The URL https://storage.googleapis.com/rightsmoves/ points to a specific Google Cloud Storage bucket named "rightsmoves". Based on recent security data and web scans, this particular bucket has been associated with malicious activity, specifically phishing and "traffic stealing" schemes.<p>I've reported it several times via Google Cloud Platform abuse form and they ignore it.<p>Is it Google's total incompetence? Why are they allowing scams from their own domain?