There are some unauthorized users who would try to hack your data such as banking, shopping or email passwords through a technique called phishing. Phishing is a form of fraud in which the attacker tries to learn information such as login credentials or account information by masquerading as a reputable entity or person in email, IM or other communication channels. If you use Gmail, then there are millions of mails that are blocked from reaching the recipients inbox. Unfortunately, Google itself was the latest victim of a phishing scam.
This week, Google defended against an email phishing campaign that tricked some of the users into inadvertently granting access to their contact information, with the intent to spread more phishing emails. We took quick action to revoke all access granted to the attacker as well as steps to reduce and prevent harm from future variants of this type of attack.
The Android users are protected from such attacks by a phishing warning that is implemented by Gmail. Earlier, the Gmail users themselves were responsible for protecting their accounts from fraudulent emails, websites and download. But, now this overhead has been removed by implementing new designing scheme for protecting users from opening suspicious links. Hence, now a full screen warning will be displayed.
Smartphone’s make it difficult for users to distinguish between a fraud attempt from a serious email. The only alternative to identify a valid user is to look at the URL to distinguish between real and fake, which is obviously not the easiest thing to do, as it seems, especially on a Smartphone. Security apps are there but they also do not provide full protection as the hackers are also able to hack those sites.
Google protects users from phishing in the following ways:
- Using machine learning-based detection of spam and phishing messages, which has contributed to 99.9% accuracy in spam detection.
- Providing Safe Browsing warnings about dangerous links, within Gmail and across more than 2 billion browsers.
- Preventing suspicious account sign-ins through dynamic, risk-based challenges.
- Scanning email attachments for malware and other dangerous payloads.
Users can protect themselves in following ways:
- Take the Google Security Checkup, paying particular attention to any applications or devices you no longer use, as well as any unrecognized devices.
- Pay attention to warnings and alerts that appear in Gmail and other products.
- Report suspicious emails and other content to Google.
⊕ Source: Google