• Registered: 2025-02-01
  • Posts: 6

Topic: Gmail Security Warning for 2.5 Billion Users-AI Hack Confirmed

https://timescale.ghost.io/blog/content/images/2024/07/A-Brief-History-of-AI_cover.jpg
Another Gmail AI hack attack has been confirmed.


Update, Jan. 31, 2025: This story, initially published Jan. 30, has been updated with a declaration from Google about the sophisticated Gmail AI attack along with comment from a material control security professional.


Hackers concealing in plain sight, avatars being used in unique attacks, and even perpetual 2FA-bypass dangers against Google users have actually been reported. What a time to be alive if you are a criminal hacker, although calling this most current frightening hacker alive is a stretch: be warned, this harmful AI wants your Gmail credentials.


Victim Calls Latest Gmail Threat 'One Of The Most Sophisticated Phishing Attack I've Ever Seen'


Imagine getting a call from a number with a Google caller ID from an American assistance technician cautioning you that someone had actually compromised your Google account, which had actually now been momentarily blocked. Imagine that support person then sending an email to your Gmail account to verify this, as asked for by you, and sent out from an authentic Google domain. Imagine querying the phone number and asking if you might call them back on it to be sure it was genuine. They agreed after explaining it was noted on google.com and stated there may be a wait while on hold. You checked and it was listed, so you didn't make that call. Imagine being sent a code from Google to be able to reset your account and take back control and almost clicking on it. Luckily, by this phase Zach Latta, founder of Hack Club and the person who almost fell victim, had sussed it was an AI-driven attack, albeit an extremely creative one indeed.


If this sounds familiar, that's because it is: I initially warned about such AI-powered attacks against Gmail users on Oct. 11 in a story that went viral. The method is nearly precisely the very same, however the warning to all 2.5 billion users of Gmail stays the exact same: be mindful of the threat and do not let your guard down for even a minute.


" Cybercriminals are constantly establishing brand-new strategies, techniques, and procedures to exploit vulnerabilities and bypass security controls, and business should be able to rapidly adapt and respond to these risks," Spencer Starkey, a vice-president at SonicWall, stated, "This needs a proactive and flexible method to cybersecurity, which includes routine security evaluations, threat intelligence, vulnerability management, and incident response planning."


D.C. Plane Crash Live Updates: FAA Restricts Helicopter Flights Near Reagan Airport


12-Year-Old Figure Skaters Among Those Killed In D.C. Plane Crash: What We Understand About The Victims


FBI Warns iPhone And Android Users-Stop Answering These Calls


Mitigating The AI-Attacks Against Your Gmail Account Credentials
https://meetrix.io/articles/content/images/2024/01/Meetrix-Deepseek-_-Developer-Guide.png

All the usual phishing mitigation suggestions heads out the window - well, a lot of it, at least - when discussing these super-sophisticated AI attacks. "She sounded like a genuine engineer, the connection was very clear, and she had an American accent," Latta said. This shows the description in my story back in October when the enemy was described as being "super sensible," although then there was a pre-attack stage where notices of compromise were sent seven days earlier to prime the target for the call.
https://resize.latenode.com/cdn-cgi/image/width\u003d960,format\u003dauto,fit\u003dscale-down/https://cdn.prod.website-files.com/62c40e4513da320b60f32941/66b5da4e8c401c42d7dbf20a_408.png

The initial target is a security specialist, which likely saved them from falling victim to the AI attack, and the newest potential victim is the founder of a hacking club. You may not have quite the very same levels of technical experience as these 2, who both very almost gave in, so how can you remain safe?
https://urbeuniversity.edu/storage/images/july2023/four-skills-that-wont-be-replaced-by-artificial-intelligence-in-the-future.webp

" We have actually suspended the account behind this scam," a Google spokesperson stated, "we have not seen evidence that this is a wide-scale tactic, but we are hardening our defenses against abusers leveraging g.co recommendations at sign-up to further protect users."


" Due to the speed at which new attacks are being developed, they are more adaptive and challenging to find, which postures an extra challenge for cybersecurity professionals," Starkey said, "From a high-level organization point of view, they should look to constantly monitor their network for suspicious activity, utilizing security tools to find where logins are taking place and on what gadgets."


For everyone else, consumers particularly, stay calm if you are approached by someone claiming to be from Google assistance, and hang up, as they won't call you.


If in any doubt, use resources such as Google search and your Gmail account to look for that telephone number and to see if your account has actually been accessed by anybody unfamiliar to you. Use the web client and scroll to the bottom of the screen where, bottom right, you'll find a link to reveal all recent activity on your account.


Finally, pay specific attention to what Google says about staying safe from opponents using Gmail phishing rip-off hack attacks.


Editorial Standards

Forbes Accolades


Join The Conversation


One Community. Many Voices. Create a totally free account to share your ideas.


Forbes Community Guidelines


Our neighborhood is about connecting individuals through open and thoughtful conversations. We want our readers to share their views and exchange concepts and facts in a safe space.


In order to do so, please follow the publishing rules in our website's Terms of Service. We've summed up some of those key rules listed below. Put simply, keep it civil.


Your post will be rejected if we notice that it seems to consist of:


- False or purposefully out-of-context or deceptive information

- Spam

- Insults, obscenity, incoherent, profane or inflammatory language or dangers of any kind

- Attacks on the identity of other commenters or the short article's author

- Content that otherwise violates our website's terms.


User accounts will be blocked if we notice or believe that users are taken part in:


- Continuous attempts to re-post comments that have been formerly moderated/rejected

- Racist, sexist, homophobic or other inequitable remarks

- Attempts or techniques that put the site security at threat

- Actions that otherwise violate our website's terms.


So, how can you be a power user?


- Stay on topic and share your insights

- Feel totally free to be clear and thoughtful to get your point throughout

- 'Like' or 'Dislike' to reveal your point of view.

- Protect your community.

- Use the report tool to signal us when somebody breaks the guidelines.


Thanks for reading our community guidelines. Please read the full list of posting rules discovered in our website's Regards to Service.

My homepage :: ai