Hackers are deploying a new online scheme that poses a serious risk to Gmail users. This threat, recently identified by the Malwarebytes team, targets unsuspecting individuals by sending fake messages purporting to be from Google Support. The messages claim that there has been unauthorized access to the user’s account and prompt them to reset their password. In some cases, scammers even follow up with a phone call to enhance the ruse.
The objective of this scam is to trick users into revealing the security code sent by Google during a password reset. Once obtained, hackers can infiltrate the account and steal sensitive personal information. Malwarebytes cautioned that victims are lured into entering their login credentials in a bogus account reset email. The scammers then request the victim to provide a verification code, which the victim reads out, believing it will secure their account. However, this code is used by the fraudsters to seize control of the victim’s account.
Although the extent of this issue is not fully known, reports indicate that several Google users have already fallen prey to this scam in recent weeks. One affected user shared their experience on Reddit, recounting how the scammer attempted to take over their account during a phone call. To add credibility, the scammer even instructed the victim to verify their phone number independently, only to deceive them further.
Google has issued a warning advising users to exercise caution and refrain from sharing any personal information if approached by individuals claiming to be from Google Support. The tech giant emphasized that Google does not charge for password recovery services or provide phone-based support for Gmail-related issues. Users are urged to be vigilant and report any suspicious communications to prevent falling victim to such fraudulent activities.
