Gmail users are warned about new AI scams stealing personal data. Learn how to protect your account with advice from security experts and the FBI. Stay safe online!
Gmail users are being warned about a sophisticated new scam that utilizes artificial intelligence to steal personal information and compromise accounts. These attacks, described as ‘devastating,’ have prompted security experts to issue urgent advice to help users stay safe.
The Rise of AI-Powered Scams
The threat of AI-driven scams has been on the radar since May of last year, when the FBI issued an alert about a rise in these fraudulent activities. According to FBI Special Agent in Charge Robert Tripp, attackers are using AI to create highly convincing voice or video messages and emails. These tactics are designed to enable fraud schemes that can lead to significant financial losses, reputational damage, and the compromise of sensitive data.
Since the initial warning, the number of people targeted has increased. Cybersecurity firm Malwarebytes has released new guidance on how to recognize and avoid these scams.
How the Scams Work
These scams often begin with a phone call claiming that a user’s Gmail account has been compromised. This is followed by an email that appears to be from Google. The email aims to trick users into providing their Gmail recovery code, which the scammers claim is needed to restore the account.
If successful, the criminals gain access to the user’s Gmail account and other services, potentially leading to identity theft. One targeted user, Sam Mitrovic, a Microsoft solutions consultant, shared his experience in a blog post. He received a notification about a Gmail account recovery attempt, followed by a phone call about suspicious activity on his account. Fortunately, Mitrovic recognized the scam and hung up.
Mitrovic noted that these scams are becoming increasingly sophisticated and convincing. He added that many people are likely to fall for them because they sound legitimate.
Additional Warnings from the FBI
In addition to account recovery scams, the FBI has also warned about unsolicited emails and text messages containing links to fake websites. These websites are designed to steal login credentials.
Users should be cautious if they receive a call from Google and are then sent a link, as this is a common tactic used in these scams.
Protecting Yourself from AI Gmail Phishing
Malwarebytes offers the following advice to help users stay safe from these AI-powered phishing attempts:
- Never click on links or download files from unexpected emails or messages.
- Do not enter personal information on a website unless you are certain it is legitimate.
- Use a password manager to autofill credentials only on trusted sites.
- Monitor your accounts for signs of unauthorized access or data leaks.
- Verify security alerts by visiting your Google Account page directly instead of using links in emails.
- Use multi-factor authentication (MFA) for all accounts.
- Protect your devices with up-to-date security software, and use text protection and text message filtering on your mobile device.
By following these guidelines, Gmail users can significantly reduce their risk of falling victim to these increasingly sophisticated AI-powered scams.
Sources: https://www.mirror.co.uk/tech/gmail-email-ai-message-warning-34680072
https://www.bristolpost.co.uk/news/bristol-news/gmail-users-urged-take-action-9949985
https://www.examinerlive.co.uk/news/gmail-users-issued-urgent-security-31015646