In a recent warning to all Gmail users, Google highlights a new phishing campaign that uses legitimate-looking emails to bypass security checks and trick recipients into handing over their account credentials. Google has acknowledged the threat and is working to roll out protections. Still, users are urged to stay vigilant, especially when responding to emails that appear to come from trusted sources like Google.
The scam came to light when Nick Johnson, a software developer and prominent user on X (formerly Twitter), shared details of a phishing email he received on 15 April.
The message was apparently sent from a legitimate address—no-reply@google.com and even passed Google's stringent authentication checks, including DKIM (DomainKeys Identified Mail).
This lent the email an air of authenticity, convincing Johnson and potentially others that it was a genuine communication from Google.
The email falsely claimed that a subpoena had been issued for Johnson’s Google Account data and directed him to a support portal to respond. The link led to a page hosted on sites.google.com, a legitimate Google subdomain, which mimicked Google’s sign-in page.
The site was, in fact, a cleverly designed phishing page created to harvest user credentials.
Also Read: Gmail Users Beware: AI-Driven Phishing Scams on the Rise
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
