Understand your needs
Improve our services
Deliver personalised content
Save your preferences
Analyse visitor interactions
Your consent is voluntary – you can always change you cookie settings here.
Hackers have once again found a way to exploit a security feature you trust. The Google Critical Security Alert designed to warn users about potentially unauthorized access has been turned into a phishing scam. Find out how hackers are using this feature to their advantage and what to do if you receive such an email.
Aug 29, 2019 · 4 min read
Google’s Critical Security Alert is a useful security feature that notifies you every time a new device is used to log into your account. It may be you, or it may be a perpetrator. Either way, you will receive an email from Google double-checking whether the login was intended. If it wasn’t you, you should immediately check your Gmail account for any suspicious activity.
Many users receive these warnings after buying a new device, signing in from their work computer, or when browsing behind a proxy or a VPN server. The latter will change your IP address; therefore, Google will identify your connection as coming from a new device.
However, hackers wouldn’t be hackers if they wouldn’t find ways to exploit a trustworthy security feature and turn it into a phishing attack. Gmail users have been reporting phishing emails that seemed to be coming from Google. They usually present one of these two scenarios:
If you clicked on any links, downloaded attached files, or entered your details on a spoofed website, you may be in trouble. This means that hackers may already have your password or have installed malicious software onto your device.
It's time to act fast. Hackers may now be able to:
Here's what you should do next if you have a suspicion that someone might have accessed your personal information or got into your device:
It’s time to take your online security to the next level. You can do this by investing in a VPN. Not only will your online traffic be wrapped in layers of powerful encryption, but your location and IP address will also be hidden.
NordVPN’s Threat Protection suite is your perfect defense against malvertising and phishing attacks. Threat Protection has a massive database of blacklisted sites. If you’re about to visit a page that is notorious for hosting malicious software and malware, Threat Protection will kick in and block your access. Why wait for an attack to happen? Be proactive with your online security and subscribe to NordVPN.
Want to read more like this?
Get the latest news and tips from NordVPN