Since password hackers have carried out a considerable number of “successful intrusions”, Google has advised the majority of its 2.5 billion Gmail users to reset their passwords and improve account security.
Users are being advised to adopt additional security measures, such as two-factor authentication, if they haven’t already, and to keep a close eye out for any unusual activity.
Common Hacking Tactics Targeting Gmail
Hackers frequently obtain Gmail passwords by fooling users into disclosing their two-factor authentication codes or by sending emails with links to phoney sign-in sites. According to Google research, barely one-third of users update their strong, one-of-a-kind passwords on a regular basis.
Google’s Advice for Stronger Account Protection
In addition, Google has urged users to strengthen their security procedures following a hack of its own Salesforce database. Google issued a warning in June that malicious actors were using social engineering attacks to fool people by pretending to be IT support staff members.
What Data Was Exposed?
The company claimed that this tactic was “particularly effective in tricking employees.” Although the hacking technique may be utilised for more severe attacks in the future, it primarily compromised publicly accessible data, such as contact information for small and medium-sized enterprises.
In a blog post published in June, Google stated that it thinks threat actors that use the “ShinyHunters” brand might be getting ready to establish a data leak site (DLS) in order to intensify their extortion efforts. It went on to say that these new strategies, which include those connected to the recent UNC6040 Salesforce data breaches, are probably meant to put more pressure on victims.
Who Are the ShinyHunters?
On August 8, it sent out an email to all users affected by this event. Originating from the Pokémon franchise, ShinyHunters was founded in 2020 and has since been connected to multiple high-profile hacks of companies such as Microsoft, AT&T, Santander, and Ticketmaster.
Google Blocking Unverified APKs from 2026
A big update that Google has revealed for Android might drastically affect how apps are deployed on the platform. The business will mandate that verified developers register all apps on certified Android devices beginning in September 2026. Users will no longer be able to sideload programs from unidentified or unconfirmed sources as a result.
Why Google Is Tightening App Security
Google claims that this action is intended to improve security and lower the possibility of malware, which is frequently distributed by hackers using APKs. The goal of the new regulation, according to Google, is “improving Android’s security to keep it open and safe.” The business contends that requiring developers to authenticate themselves will provide the ecosystem a crucial new level of accountability.
|
Quick |
|
•Hackers carried out “successful •Google advises enabling two-factor •Phishing links & fake sign-in •Mostly public data (contact info of |
Leave a Reply