Usually, you can tell a legitimate Google notification from a phishing scam by reading the URLs domain name — a message that redirects you to a non-Google address is sure to be a scam. However, a sophisticated phisher has come up with a method of stealing Google login information by using the companys own servers against it. The scam comes in an email titled Documents, and encourages users to click on an included link to check out an important message on Google Drive.