If You See This Number On Your Phone, Your Gmail Is Under Attack
Google's latest security alert is causing a stir among users, with headlines warning of "2.5 billion Gmail accounts exposed" and a massive hack uncovered. However, the truth is far from it. According to Google, neither Google Cloud nor Gmail data was affected in the recent breach. So, what's behind this surge in attacks on Gmail accounts? And how can you protect yourself?
Google has confirmed that hackers are successfully gaining access to user accounts, and the company is urging users to be vigilant. "Please reiterate to your readers that Google will not call you to reset your password or troubleshoot account issues," the company asked us. But despite this warning, calls from its customer support number continue to trick users into opening their accounts to hackers.
The scam involves a person claiming to be a Google employee contacting you by phone (typically using a phone number with a 650 area code), informing you that suspicious access attempts were detected on your Gmail account. If you take the bait, the scammers will attempt to get you to reset your password under the guise of keeping your account secure.
But be warned, once this is done, the scammer can lock you out of your Gmail account, leading to a world of pain. The number you need to watch for is +1 (650) 253-0000, which has been spoofed and linked to "the global headquarters of Google." A typical Reddit post reports that a "guy with a very Californian accent" called from this number to warn of unauthorized account access and to talk the user through steps "to secure my account and prevent further recovery attempts from outside of the U.S."
These Gmail attacks begin with unauthorized account recovery attempts originating from international locations. These initial attempts serve as reconnaissance, testing account security measures and potentially creating a sense of urgency for the target. Days later, victims receive phone calls from what appears to be Google's legitimate customer service number: +1 (650) 253-0000.
So, if you do receive a call from that number, it's an attack. To protect yourself, log into your Google account using the usual, publicly available method – never a link. Go to Security—Review Security Activity and see what's listed. If there are no unfamiliar logins, you can relax. While there, you can run a Security Checkup and follow any recommended steps.
It's also essential to replace SMS 2FA with an authenticator app and add a passkey. You should certainly replace your password with something strong and unique. By taking these simple precautions, you can safeguard your Gmail account from these phishing attacks and enjoy peace of mind once again.
Protect Yourself from These Scams
Here are some steps you can take to protect yourself:
- Never click on a link from an unknown number or email. Always log into your Google account directly using the official login method.
- Be cautious of phone calls claiming to be from Google's customer service team. If you receive such a call, it's likely a scam.
- Replace SMS 2FA with an authenticator app and add a passkey to your account for an extra layer of security.
- Maintain strong and unique passwords for all your accounts, including Gmail.
By being vigilant and taking these precautions, you can protect yourself from these phishing attacks and enjoy peace of mind once again. Stay safe online!