All Irish Gmail users 'at risk' - follow 4 crucial steps to keep account safe
Every Gmail user in Ireland is being warned about an alarming new threat that could jeopardise the security of their email accounts. Security experts are raising the alarm over an "extremely sophisticated" tactic that is fooling even tech-savvy users into falling for it.
The attack, which has been dubbed a 'clever replay attack', was first identified by Nick Johnson, a lead developer of Ethereum Name Service, and puts users at risk of online fraud.
It involves cybercriminals sending emails that appear to come directly from Google, making them seem highly legitimate and able to slip past even the most effective spam filters.
In this particular attack, the email looks almost identical to an official communication from Google. It suggests that a legal subpoena has been issued and access to the recipient's Gmail account is required. The email address and domain appear to be genuine, making the scam difficult to spot.
Nick explained: "The first thing to note is that this is a valid, signed email - it really was sent from no-reply@google.com. It passes the DKIM signature check, and Gmail displays it without any warnings."
The only reason tech-savvy Nick spotted something was wrong is that the official site should have been hosted on a platform called accounts.google.com - instead it appeared on sites.google.com. The difference is that anyone with a Google account can create a website on sites.google.com. And that is exactly what the cybercriminals did.
It's definitely not a warning anyone should ignore, as falling for the trick could give scammers full access to accounts and highly personal data, Mirror UK reports.
Google has responded to the scam, confirming that they are working on an update to address the issue and prevent further incidents. A spokesperson told Newsweek: "We're aware of this class of targeted attack from the threat actor, Rockfoils, and have been rolling out protections for the past week."
Despite the company's efforts, it's crucial for all Irish Gmail users to remain vigilant when checking their daily batch of emails and protect their accounts by following some simple yet crucial steps.
Security experts at Malwarebytes have worryingly warned that "all Gmail users are at risk from clever replay attack". They have shared four important steps every Irish Gmail user must take to safeguard their account:
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
RTÉ News
10 hours ago
- RTÉ News
Germany seeks to levy 10% tax on online platforms like Google
Germany is considering a 10% tax on large online platforms like Alphabet's Google and Meta's Facebook, its new culture minister told magazine Stern, in a move likely to heighten trade tensions with the Trump administration. The proposal comes as Chancellor Friedrich Merz is expected to travel to Washington soon to meet with US President Donald Trump, although a trip has not yet been officially announced. Trump has in the past said he will not allow foreign governments to "appropriate America's tax base for their own benefit". Culture Minister Wolfram Weimer said his ministry was drafting a legislative proposal while also seeking talks with platform operators that he accused of "cunning tax evasion" to explore alternative solutions like voluntary contributions. "These corporations do billions in business in Germany with extremely high profit margins and benefit enormously from the country's media and cultural output as well as its infrastructure - but they pay hardly any taxes, invest too little, and give far too little back to society," he told Stern in an interview published today. Alphabet and Meta did not immediately respond to Reuters requests for comment. Germany's ruling parties agreed in a coalition deal earlier this year to impose such a digital services levy. If the government goes ahead with the tax on sales revenue generated by digital services providers within its borders, it would join a raft of other countries to have done so such as Britain, France, Italy, Spain, Turkey, India, Austria and Canada. During Trump's first term, the US Trade Representative's office launched a Section 301 investigation into unfair trade practices against several of these countries, finding they discriminated against U.S. companies, paving the way for retaliatory tariffs on certain imports. In February, Trump ordered his trade chief to revive investigations aimed at imposing tariffs on imports from countries that levy digital service taxes on US technology companies. That does not, however, appear to have deterred the new German government, which took office earlier this month. Weimer accused the big digital platforms of building up "monopoly-like structures" that not only restrict competition but also concentrate media power too heavily", posing a risk for freedom of expression. "If Google, under pressure from Donald Trump, unilaterally renames the Gulf of Mexico to the Gulf of America - and simply decrees this due to its enormous power to shape meaning in global communication - then we can see the kinds of problems that lie within the current structures," he said.
The Irish Sun
12 hours ago
- The Irish Sun
Major warning to billions of WhatsApp users over worrying ‘cloning' tool that tricks victims into handing over £1,000s
AN URGENT warning has gone out to WhatsApp users after news broke of a scam which could cost users thousands of pounds. The sinister scheme sees hackers 1 Millions of WhatsApp users have been warned about a chilling scam Credit: Getty The Investment Association found that there was a 57 per cent surge in cloning scams during the second half of 2024. Often, the scam begins with users being added to fake Scammers make sure the group looks as though it was created by a reputable investment company, before inviting users to transfer their money. By pretending to invest your money, the scammers can then Read More on WhatsApp According to experts, one in four of the attempts proved successful. In total, nearly 500 'cloning' attempts were recorded by the Investment Association alone. A staggering £2.7 million has been lost through the scam. Adrian Hood, a financial crime expert said: "The growth of AI is likely to see increasingly sophisticated scams, with criminals better able to mimic legitimate firms." Most read in Tech Chilling vid outlines the dangers posed by sex extortion In 2024, £1.7 million was recovered from scammers out of a total loss of £5.4 million through fraud. The news come after Google issued According to the Federal Trade Commission, Google's reported fraud losses jumped to $12.5 billion in 2024. In response, the tech company said: "Scammers are more effective and act without fear of punishment when people are uninformed about fraud and scam tactics." Using AI technology, scammers can impersonate representatives from prominent companies. Victims with valuable online assets, including crypto wallets, and social media influencers are also being increasingly targeted. How to keep yourself safe from hackers and scammers FOLLOW these steps to protect yourself from hackers in the future: Make a 'strong' password with 8 or more characters and a combination of upper case characters, numbers and symbols Don't do online banking on public WiFi, unless absolutely necessary Don't click on dodgy email links claiming to be from banks Use different passwords for different sites Never re-use your main email password Use anti-virus software Don't accept Facebook friend requests or LinkedIn invitations from people you don't know Think before you put personal info on social media Find My iPhone, Android Lost and BlackBerry Protect all allow you to remotely wipe a stolen phone. Set this feature up Only shop online on secure sites Don't store your card details on websites Password protect your phone and other devices
The Irish Sun
15 hours ago
- The Irish Sun
I received urgent WhatsApp alert meant to save me from horror text-stealing attack – check your own messages right now
WHATSAPP is warning people to upgrade their account security to keep out fraudsters and other snoopers. I received an alert from 1 This important alert popped up on my WhatsApp Credit: Jamie Harris / The Sun Passkeys are an alternative to These rely on your face, fingerprint or a simple passcode to login. As such, passkeys can't be guessed and they're impossible to re-use too. And passwords can be leaked online - whereas a passkey can't. Read more about WhatsApp People mistakenly re-use passwords as well, because they're easy to forget. Re-used passwords make it all too easy for hackers to break into multiple of your accounts, and simple log-ins are easy to guess. Passkeys have none of these problems, making them much more secure. A number of tech companies such as Google are pushing people to switch from passwords to passkeys. Most read in Tech If your phone ends up in the wrong hands they could use it to raid your messages - and even text family to scam them out of money by pretending to be you. " We send you a registration code to confirm that you own the phone number you want to use on WhatsApp ," Meta explains. WhatsApp reveals exacty how to block one of your contacts " After registering your phone number with WhatsApp , you can choose to set up a passkey for future verification. " "You can use your fingerprint, face, or screen lock to verify it's you with a passkey. When you register, you can use the passkey instead of an SMS." How to setup passkeys on WhatsApp To start setting up a passkey on your WhatsApp account, do the following: Go to your WhatsApp Settings Tap Account Tap Passkeys Tap Create passkey (skip this step if you're on Android) Tap Continue Best WhatsApp tips and hacks Wondering how to get the most out of WhatsApp? Read on to find out about all the hidden features, tips and hacks for the social media platform... How to know if someone What does How to How to What happens when you How to What does How to use
