How does the new Gmail scam target users with their phone numbers?

The scam involves sending fraudulent text messages that appear to be from Gmail, warning of account compromise and leading users to phishing sites where their credentials can be stolen. Attackers may then use this information to perform SIM swaps.

What steps should Gmail users take if they suspect they've been targeted by this scam?

Users should immediately change their Google password, enable two-factor authentication (2FA) preferably via an app or hardware key, and update passwords on any other accounts that shared the same credentials.

How can users protect their phone numbers from being exploited in scams?

Users can protect their numbers by asking their mobile carrier about security options like SIM PINs, account passcodes, port freezes, or number locks to prevent unauthorized SIM swaps.

Home / Technology / Gmail Scam Uses Your Phone Against You!

Gmail Scam Uses Your Phone Against You!

27 Feb

Summary

Scam texts pretend to be from Gmail, warning of account compromise.
Attackers may use stolen info to SIM swap, gaining access to 2FA.
Experts advise changing Google passwords and enabling strong 2FA.

Gmail users are currently facing a sophisticated phishing scam that leverages their own phone numbers. Fraudulent text messages, impersonating 'Gmail from Google,' alert recipients about compromised accounts and offer a 'Recover Account' link. Clicking this link directs users to fake websites designed to steal their Gmail credentials.

Cybercriminals can combine stolen passwords with personal data, such as phone numbers, to initiate SIM swaps. This process can transfer a user's number to a SIM card controlled by the attacker, potentially bypassing SMS-based two-factor authentication codes. These deceptive texts often cite suspicious login attempts from foreign IP addresses to heighten user alarm.

To combat this threat, security experts recommend immediate actions. Users should change their Google passwords and activate two-factor authentication (2FA), preferably using an authenticator app or hardware key over SMS. Updating all other accounts that share the compromised password is also critical.

Further protection involves securing mobile carrier accounts with measures like SIM PINs, account passcodes, or port freezes to prevent unauthorized number transfers. Monitoring account activity for unusual logins and enabling login alerts can provide early warnings of potential breaches. Reporting phishing attempts to Google and the FTC is also encouraged.

Disclaimer: This story has been auto-aggregated and auto-summarised by a computer program. This story has not been edited or created by the Feedzop team.

Home / Technology / Gmail Scam Uses Your Phone Against You!

Gmail Scam Uses Your Phone Against You!

27 Feb

•

Summary

Scam texts pretend to be from Gmail, warning of account compromise.
Attackers may use stolen info to SIM swap, gaining access to 2FA.
Experts advise changing Google passwords and enabling strong 2FA.

Disclaimer: This story has been auto-aggregated and auto-summarised by a computer program. This story has not been edited or created by the Feedzop team.