Warning to all 1.8bn Gmail users over password hack
Briefly

Gmail users are experiencing a surge in phishing attacks, but Google reassures them that they can recover access to their accounts even if compromised. Users need to set up recovery phone numbers or emails for identity verification. Following a sophisticated attack that affected 1.8 billion users, Google has implemented protection measures. Expert Nick Johnson detailed a phishing attempt that involved authentic-looking emails and duplicitous Google web pages designed to harvest user credentials. Google advises adopting two-factor authentication and security features to combat these phishing scams effectively.
Johnson said clicking the fraudulent link in the email took him to a 'very convincing 'support portal' page.' He then clicked 'Upload additional documents' and 'View case,' and both links took him to 'exact duplicates' of legitimate Google pages. These pages asked Johnson to sign into his Google account.
A Google spokesperson told DailyMail.com: 'We're aware of this class of targeted attack from this threat actor and have rolled out protections to shut down this avenue for abuse. In the meantime, we encourage users to adopt two-factor authentication and passkeys, which provide strong protection against these kinds of phishing campaigns.'
Read at Mail Online
[
|
]