Google has confirmed that there’s an increase in hacking attempts targeting its users, with hackers stealing passwords to access accounts. This surge comes with a rise in “suspicious sign in prevented” emails, which are actually warnings from Google.
The attackers use the security warnings to their advantage, trying to copy these emails to steal account information. If you receive such an email, do not click on any link or button within it. Instead, go to your Google Account settings and review recent security events.
If anything raises concerns, change your password by clicking “Secure Your Account.” However, if you click a link from within the email or another phishing message, it may lead to a malicious fake sign-in page where hackers can steal your login credentials.
This issue is part of a broader trend where attackers are exploiting legitimate emails, messages, and calls to mimic their style. To avoid this, use passkeys for your Google, Amazon, and other accounts, and never click on links from suspicious sources. Always use the app or sign-in page you usually use in your browser.
Recently, a malware analyst discovered an email campaign that used fake voicemail notifications to steal login credentials. The attackers designed their system to capture all entered data through encrypted channels, making it difficult to detect. Staying alert and inspecting suspicious emails carefully is crucial to avoid falling victim to these attacks.
Source: https://www.forbes.com/sites/zakdoffman/2025/08/17/google-warns-gmail-users-hackers-gain-access-to-accounts