In the wake of a summer marked by significant data breaches, it is more critical than ever to ensure your personal accounts are properly secured.
For users who have not yet fortified their accounts against these widespread data incidents: it is never too late to start.
As a result, Google is once again urging its Gmail subscribers to enhance their account protections. This advisory follows a series of cyberattacks targeting corporate systems that have compromised user data, potentially endangering personal security. Google issued notifications to its 2.5 billion users in late July and again on August 8, warning that hackers are escalating phishing activities designed to trick users into surrendering their login credentials.
Google specifically identified a group known as “ShinyHunters,” which the company states has launched a Data Leak Site (DLS) to intensify its extortion campaigns. The fraudulent extortion emails often originate from the domains “shinycorp@tuta.com” and “shinygroup@tuta.com.”
This threat landscape was highlighted in May when cybersecurity researcher Jeremiah Fowler reported that approximately 184 million passwords were potentially exposed in an unsecured database, many linked to major email providers like Google and various social media platforms. Subsequently, the Google Threat Intelligence Group (GTIG) disclosed a breach within one of its corporate Salesforce server clusters. This incident exposed public business information, including company names and contact details, and was attributed to an ongoing campaign by a threat group designated UNC6040. This group employs voice phishing (vishing) to impersonate IT staff, steal data, and extort victims. Most recently, GTIG issued another alert to Salesforce customers concerning a major data breach perpetrated by a different hacking group, “UNC6395.”
To guard against future phishing attempts, Google recommends users enable two-factor authentication and update their passwords regularly. The company also cautions users to avoid clicking on emails containing alerts such as “suspicious login prevented,” a common tactic hackers use during periods of heightened security alerts. Instead, users should proactively check their security alerts directly within their Google account; instructions are provided below.
How to Review Your Account’s Security Activity
- Sign in to your Google Account.
Go to myaccount.google.com. - Navigate to “Security.”
On desktop, find this option on the left side of the screen next to a lock icon. - Select “Recent security activity.”
This section displays all security events and alerts from the last 28 days, including new sign-ins. Users can click on any event for more detailed information.
How to Change Your Gmail Password
Total time: 3 minutes
What you need: Access to your Google Account on a desktop or mobile app.
- Sign in to your Google Account.
- Go to “Security.”
- Scroll to the “How you sign in to Google” section.
- Click on “Password.”
(This section also shows the last time you changed your password). - You will be prompted to sign in again using your current password. After this, you can create a new password.
How to Set Up Two-Step Verification for Google
Total time: 5 minutes
What you need: Access to your Google Account on a desktop or mobile app.
- Sign in to your Google Account.
- Go to “Security.”
- Scroll to “How you sign in to Google.”
- Click on “2-Step Verification.”
- Follow the on-screen instructions.
To enable multi-factor authentication, you can use a security key, the Google Authenticator app (or another third-party authenticator app), link a personal phone number to receive prompts or codes, or set up backup codes.
By: Nestor Castillo, ForAllTechNews Director