Gmail Attack Confirmed — “Remain Vigilant” Google Warns Users
Google has confirmed that a new Gmail attack is underway, and the company is urging users to remain vigilant in order to protect their accounts from cybercriminals.
The attack involves scammers impersonating Google support agents, calling users and claiming to need assistance with resetting passwords or troubleshooting account issues. However, these calls are designed to trick users into revealing their 2FA recovery codes, which would then be used to access the user's account and make unauthorized changes.
One Reddit user, known as EvilKittensCo, recently fell victim to this attack after receiving a call from someone claiming to be a Google support agent. The scammer tried to convince EvilKittensCo to send their 2FA recovery code, but the user remained suspicious and ended the conversation.
"Google will not call you out of the blue like this," EvilKittensCo wrote in a post on the Reddit subreddit. "If it does, it is a scam." The user's experience highlights the importance of being cautious when receiving unsolicited calls or messages claiming to be from Google or other reputable companies.
Google has confirmed that this is a known scam targeting a limited number of users and has hardened its defenses to protect users from this type of abuse. However, the company is urging all users to remain vigilant and take steps to prevent falling victim to these types of attacks.
The Gmail Account Recovery 2FA Code Attack Explained
EvilKittensCo's experience illustrates how scammers are evolving their tactics to trick victims into revealing sensitive information. In this case, the scammer claimed that they needed to verify EvilKittensCo's Gmail recovery details in order to make changes to the account.
The rationale behind this tactic is simple: if the original owner of the account didn't verify the recovery information, then surely the changes would not be made. However, this approach is a classic example of social engineering, and users should always be wary of unsolicited calls or messages claiming to be from Google or other reputable companies.
So how can you protect yourself from these types of attacks? According to Ross Richendrfer, Gmail spokesperson, "Use phishing-resistant authentication technologies, such as security keys or passkeys." These tools can help prevent scammers from accessing your account even if they do manage to trick you into revealing sensitive information.
How to Recover Access to a Hacked Gmail Account
If you have fallen victim to this type of attack and your account has been compromised, don't panic. There are steps you can take to regain control of your account even if an attacker has changed your recovery telephone number or email.
Google recommends setting up a recovery phone as well as a recovery email on your account, which can then be used where an attacker changes credentials or forgets their own password. If you set these up before the incident, you may have up to seven days in which to regain control of your account using your original recovery factors.
To add or change a recovery phone number or email on Android, open your device settings app, hit Google, followed by your name, and select the Manage your Google account option. From there, head to the security section and select options for a recovery phone or recovery email.
Prevention is Key
The best way to protect yourself from these types of attacks is to be proactive and take steps to prevent falling victim in the first place. This includes using strong passwords, enabling two-factor authentication, and keeping your devices and software up to date.
"Use a password manager," Google recommends. "It's a big hint to prevent it." By taking these simple precautions, you can significantly reduce the risk of falling victim to phishing scams or other types of cyber attacks.