Hackers are employing a new deceptive tactic aimed at Gmail users, posing a serious online threat that should not be overlooked. This scheme involves fraudulent messages purporting to be from Google’s Support service, claiming unauthorized access attempts to the recipient’s account and prompting a password reset. To add credibility, some victims also receive follow-up phone calls.
The objective of this scam is to extract the security code sent by Google during a password reset process. If successful, hackers can gain unauthorized access to the victim’s account and pilfer personal information. Malwarebytes highlighted that victims are misled into providing their login credentials, followed by disclosing a verification code under the guise of account security verification. However, this code is exploited by scammers to hijack the victim’s account.
Although the scale of this issue remains uncertain, several Google users have reported being targeted recently. One affected individual shared on Reddit their experience of a scammer attempting to seize control of their account while engaging them in a phone conversation. The scammer even instructed the victim to verify their contact number, creating a false impression of legitimacy.
It is crucial for users to exercise caution if they receive communications from Google urging an account reset, as it is likely a fraudulent scheme. Google has issued a warning advising users not to disclose any personal information in such situations. The company emphasized that Google does not charge for account recovery or password changes, and does not offer phone support for Gmail-related issues.
In conclusion, vigilance is key when dealing with unsolicited requests for personal information, especially in cases involving account security.
