Google has issued an alert about a sophisticated phishing scam targeting its Gmail users, using artificial intelligence (AI) to make calls and emails appear authentic. The attackers are attempting to trick users into revealing their account credentials.
Victims of the scam have reported receiving calls from numbers claiming to be Google’s support team, warning them that their accounts had been compromised. The callers then send emails to confirm this information, using genuine-looking email addresses from google.com. If users query the phone number or ask to verify it by calling back, they may be sent a code to reset their account.
However, one individual, Zach Latta, nearly fell victim to the scam. He realized that the call was an AI-driven attack after being sussed out by him. Google’s Advanced Protection Program can help prevent such attacks, but its benefits are often overlooked.
The program requires users to use a passkey or hardware security key to verify their identity and sign in to their Gmail account. This adds an extra layer of security, making it difficult for hackers to gain unauthorized access to accounts.
To stay safe from these AI-powered threats, consumers should be cautious when approached by someone claiming to be from Google support and hang up. They can also check their phone number and account activity on the web client. Additionally, using the Advanced Protection Program and enabling security features can provide extra protection against phishing scams.
Google has suspended the account behind this scam, but is hardening its defenses to protect users from such tactics in the future.
Source: https://www.forbes.com/sites/daveywinder/2025/02/01/gmail-security-warning-for-25-billion-users-ai-hack-confirmed