Cybersecurity experts have warned Gmail users about a new phishing scam that exploits a recently introduced Google feature allowing users to replace their email address while keeping the old address as an alias.
اضافة اعلان
The feature, launched earlier this month, is designed to help users update old email addresses without losing previous emails or data. However, cybercriminals have quickly taken advantage of it by sending fraudulent emails claiming there are security changes to users’ accounts.
These emails often urge users to change their Gmail address or confirm login details and appear convincing because they are sent from addresses that mimic official Google addresses, such as
[email protected]
. Victims are prompted to click links to verify their accounts or confirm a new address, but these links actually lead to fake sites hosted on sites.google.com, designed to replicate Google’s login pages, according to Russia Today.
If successful, attackers can gain full access to the user’s account and all associated Google services, including Drive, Google Photos, Calendar, and any accounts linked via Google login.
Google, however, confirms that using the new feature does not result in loss of emails or files, with the inbox, stored content, backups, purchase history, and subscriptions remaining intact.
Technology expert Kurt Knutson told Fox News that the update affects nearly two billion active users, particularly those who wish to retire old email addresses linked to past personal or professional stages.
Cybersecurity experts warned that, despite their sophistication, phishing emails still show clear warning signs, such as generic greetings like “Dear Customer” or threatening language prompting immediate action without verification. They also highlighted the risk of messages requesting passwords or sensitive information via external links, which often lead to fake pages aimed at stealing login data.
Google advises users not to interact with such emails and to verify any security alert directly by logging into their accounts, where they can review device details, login times, and geographic locations of login attempts.
