Google has officially warned of a malicious attack targeting its Gmail email service, after it detected a spike in login attempts with wrong passwords, followed by fake messages claiming to be from Google and asking the user to reset their password. These messages lead to hacker websites to collect login credentials and steal accounts. Google emphasized not to click on any suspicious links, and to rely solely on internal tools to review passwords, check login locations and delete any suspicious access.
The report also indicated that Amazon faced a similar attack but via text messages, asking users to log in to follow up on returns, while the goal is to steal their data. Google advises users to secure their accounts through two-factor authentication (2FA) or using passkeys linked to their devices. Other attacks have also been spotted using the same technique, such as fake mails claiming to have a voicemail and asking for a login to listen to it, reflecting the seriousness of the increase in cyber attacks that rely on deception to exploit user trust.
"Have you activated two-step verification on your Gmail account to protect it from being hacked?"