Maps abused by spammers

Where there’s a web service used by millions, there is opportunity for scammers to make a buck. Security firm Sophos reports how by using the redirect service that works for Google Maps (maps.app.goo.gl) scammers obfuscate the true destination they are sending their users to when using Google’s shortening service Goo.gl (scheduled to be discontinued in 2019).

https://goo.gl/Ae6gta becomes https://maps.app.goo.gl/?link=https://googlemaps.guru which in turns bring you to https://googlemaps.guru

The vulnerability is currently being used by scammers and spammers to peddle their magic potions of all sorts. It was originally reported in September 2017.