Google suffers data breach, puts out Gmail warning
15 days ago
- #Gmail Security
- #Phishing Attacks
- #Data Breach
- Google warns of a surge in phishing attacks targeting Gmail and Google Workspace users.
- A recent data breach of a Google Salesforce database exposed customer and company names, aiding attackers in more convincing phishing attempts.
- Hacker group ShinyHunters breached Google's Salesforce database by impersonating IT support, affecting millions of users.
- ShinyHunters has targeted multiple companies, including Qantas, Allianz Life, Cisco, Louis Vuitton, and Adidas.
- Phishing and vishing attacks now account for 37% of successful account takeovers on Google services.
- Attackers use fake Google emails or phone calls to trick users into sharing passwords or resetting them.
- Google will never call users unprompted about security issues; ignore such calls to avoid vishing attacks.
- A 'dangling bucket' attack targets Google Cloud users by exploiting outdated access addresses to inject malware.
- Protect your Gmail account by setting a strong password, using non-SMS 2FA, setting up a passkey, and enrolling in Google’s Advanced Protection Program.
- Proton offers encrypted services like Proton Pass, Proton Authenticator, and Proton Mail to enhance security and privacy.
- Proton Mail's hide-my-email aliases reduce damage from data breaches by keeping your real email private.