in , , ,

Sophisticated Gmail Scam Targets User Accounts

Read Time:1 Minute, 29 Second

A new, advanced AI-powered scam is targeting Gmail users, cleverly mimicking Google support staff over extended periods. This scheme exploits user trust by imitating Google’s communication channels, including phone calls and emails.

IT consultant and tech blogger Sam Mitrovic recently documented his encounter with this scam. The scheme began with a notification for a Gmail account recovery attempt, which Mitrovic rejected. Shortly after, he received a call from “Google Sydney,” which he didn’t answer.

Forbes notes that fake account recovery notifications are a common phishing strategy used by cybercriminals to direct users to counterfeit login pages designed to steal credentials.

A week later, the scam resurfaced. Mitrovic received another account recovery request and a call from an Australian number. This time, he answered. The caller, speaking professionally, claimed there was suspicious activity on his account, including unauthorized data downloads.

Despite his skepticism, Mitrovic noticed the caller’s number matched Google’s official Australian IT support line. He requested and received a confirmation email that appeared genuine at first glance. However, closer inspection revealed a cleverly disguised fake domain in the “TO” field.

Mitrovic realized the call was AI-generated due to the unnaturally perfect speech patterns. A check of his Google Account history showed no unusual activity, confirming his suspicions of a scam.

Other users reported similar experiences on platforms like Reddit and ReverseAustralia. Forbes suggests the scam likely aimed to steal login information through a fake portal and may have involved malware to bypass two-factor authentication.

Mitrovic emphasizes the importance of vigilance: “There are many tools to fight scammers, but the best tool is still vigilance. Always do the basic checks or seek assistance from someone you trust.”

See also  Google Ordered to Open Play Store in Epic Antitrust Case

This incident highlights the need for caution, even when communications seem to come from trusted sources.

What do you think?

Disaster Relief Efforts Disrupted by Threats and Misinformation

Google Partners with Nuclear Startup to Power AI Data Centers