Digital transformation

FBI raises alarm over 'ultra-sophisticated' Gmail attacks.

Phan Van Hoa February 12, 2025 06:30

Recently, the US Federal Bureau of Investigation (FBI) issued a warning to billions of Gmail users worldwide about a wave of sophisticated attacks carried out by cybercriminals using artificial intelligence (AI) technology.

According to the FBI, the threat from attackers targeting Gmail accounts has never been more serious. AI-powered phishing attacks, more sophisticated than ever, are constantly rampant, while other fundamental risks continue to lurk for users of the world's most popular email platform.

Instead of just targeting systems, attackers are now "attacking" people to hijack their email accounts. And Gmail has become a prime target due to its immense influence in the tech world.

Ảnh minh họa
Illustrative image.

Because once Gmail is compromised, the entire Google account is at risk, a massive trove of data that no cybercriminal can resist.

Of course, this doesn't mean users of other email platforms can be complacent. But it's undeniable that Gmail has always been the most attractive target for hackers.

Serious warnings about attacks on Gmail.

According to the Phishing Trends report by Finnish security company Hoxhunt, updated on February 6th, the number of phishing attacks that bypassed security filters has increased by 49% since the beginning of 2022. Notably, AI-generated threats now account for 4.7% of all attacks.

Although only 35% of those attacks directly targeted individuals, it's undeniable that AI is becoming a weapon in the hands of cybercriminals. As Pyry Åvist, Chief Technology Officer of Hoxhunt, warned: "AI is being exploited by threat actors to usher in a new era of non-technical attacks."

According to the latest report from the US cybersecurity company VIPRE, the fact that cybercriminals can create sophisticated AI-powered phishing campaigns for as little as $5 is clear evidence of how advanced non-technical attacks have become. However, in terms of the most common tactics, malicious links still lead, accounting for up to 70% of attacks.

Even attacks targeting Gmail, while AI-powered and highly persuasive, ultimately require victims to click on a link to achieve their goal. This is why you cannot ignore the FBI's warning; identifying and preventing these phishing attacks is extremely important.

Ảnh minh họa1
Gmail is becoming a target of sophisticated phishing attacks. Photo: Internet

Adrianus Warmenhoven, a cybersecurity expert at Nord Security (Lithuania), likened online fraud to "assembling flat furniture being easier than assembling flat furniture."

In a new video, he explained how these attacks work and highlighted an alarming fact: "The average user falls for phishing emails in less than 60 seconds, while attackers can prepare and deploy their campaigns in even less time."

Warmenhoven also emphasized that AI has made this type of scam more accessible to cybercriminals than ever before. You don't need to be a genius programmer; anyone can create convincing copies of trustworthy websites to deceive victims.

Even with some modern tools, copying a legitimate website can be done in just a few clicks. Therefore, Warmenhoven warns that online scams are not only becoming more common but also increasingly sophisticated and effective.

How users can protect their Gmail accounts from phishing attacks.

The FBI warns that: "You may receive emails that look like they're from a legitimate business, asking you to update or verify personal information by replying to the email or visiting a website."

Especially with AI-generated attacks, these emails can be persuasive enough to trick you into acting without suspicion. The FBI's advice is simple but crucial: do not click on any links in unsolicited emails or text messages.

Security expert Adrianus Warmenhoven also offered several important measures to protect your accounts. He recommended that users regularly check their accounts and services for signs of data breaches.

Additionally, using a password manager is also an effective way to protect login information, as these managers will not automatically enter passwords into suspicious websites.

To enhance security, ensure your password manager is configured to require an exact match of the web URL before entering sensitive information.

Google also provides several important recommendations to protect your Gmail account from phishing attacks. In addition to avoiding clicking on suspicious links, Google uses advanced security measures to warn you about malicious emails, phishing websites, and unsafe content.

However, even without receiving a warning, you should still avoid downloading files, entering personal information into emails, messages, websites, or pop-ups from untrusted sources.

Specifically, Google advises Gmail users never to respond to requests for personal information, whether via email, text message, or phone call.

If you receive a suspicious notification regarding your Google account security, verify the information by directly accessing your account page, rather than clicking on any links in the email.

A safe way to check is to open a new browser and manually enter the Google address or click on your account avatar in Gmail. There, you can check your Google account's recent security activity and identify any suspicious signs.

Source: Forbes
Copy Link
0 0 0
x
FBI raises alarm over 'ultra-sophisticated' Gmail attacks.
Google News
POWERED BYFREECMS- A PRODUCT OFNEKO