You Have 7 Days To Act Following Gmail Lockout Hack Attacks, Google Says

You Have 7 Days To Act Following Gmail Lockout Hack Attacks, Google Says

Google has warned its users that if their Gmail account is compromised in a hack attack, they have just seven days to take action and regain control of their account. The warning comes as the FBI takes steps to warn users of webmail platforms like Gmail about the dangers of ransomware threats.

Acting quickly is crucial when it comes to recovering a hacked and compromised Gmail account. According to Google spokesperson Ross Richendrfer, the most important thing to do is to act swiftly. However, for those who are already locked out, there's still hope within seven days.

"These can be used in cases where users forget their own passwords," Richendrfer said, or just as critically, "if an attacker changes the credentials after hijacking the account." This is where the time limitation comes in, though. Gmail users have a seven-day grace period following any recovery phone number change during which they, as the original account holder, can regain control of the account.

"When you change your recovery email," Richendrfer said, "you may be able to choose to get sign-in codes sent to your previous recovery email for one week." Google has provided more help with Gmail account recovery online.

Stop Gmail Account Lockdowns Before They Begin—Target The Source

The problem with Gmail account lockdown hacks is that they always start somewhere else. Tackling the issue at the source of the attack is the answer to mitigating the potential impact and preventing having to resort to using that seven-day lifeline that Google has provided.

While many of the attack routes will be familiar territory to most readers, a new report from Trend Micro has seen numerous security experts recommend people need to be alert to new approaches to getting hold of their account login information. Attackers can use AI technology itself to create believable lies and, increasingly, are using AI technology itself as the bait for these phishing attacks.

"Crafting lies about ChatGPT or VR can be effective due to the interest they generate," Trend Micro said. Then there is what the researchers referred to as an AI-based dynamic lie system. "Such a system would automatically contact and interact with the user to earn their trust," they said, and do so before the attack itself is launched in earnest.

"Between the first two to three emails," Trend Micro explained, "once a user is identified to be prone to being scammed, control would be passed to the human scammer. The takeaway for Gmail users, along with everyone else, is to never trust and always verify.