Skip to main content

Gmail users: Change your password now

By
A phone displaying the Gmail logo in front of large Google passkey icon that looks like a fingerprint.

To users that haven't already locked down your personal accounts in light of massive data breaches: It's never too late.

That's why Google is once again urging its Gmail subscribers to protect their accounts, following a series of data attacks on corporate systems that could eventually threaten users' personal security. Google sent notifications to its 2.5 billion Gmail users in late July and then again on Aug. 8, warning them that hackers were ramping up phishing activity intended to fool users into giving up their log-in credentials.

SEE ALSO: OpenAI and Anthropic teamed up to safety test each other's models

Google specifically referred to a group known as "ShinyHunters," which the company says has launched a data leak site (DLS) in an effort to escalate extortion pressure levied at users. Google notes the extortion emails include "shinycorp@tuta. com" and "shinygroup@tuta. com" domains.

In May, cybersecurity researcher Jeremiah Fowler reported that some 184 million passwords were potentially exposed in an open database, with many of the passwords tied to email providers like Google and social media platforms. One month later, Google Threat Intelligence Group (GTIG) reported that one of its corporate Salesforce server clusters (known as instances) was breached and exposed publicly available business information, such as business names and contact details, Google explained. The breach was continued activity from an online threat group known as UNC6040, which uses voice phishing to impersonate IT agents, steal data, and extort money. This week, GTIG issued another advisory to Salesforce clients about a large data breach by hacker group "UNC6395."

To prevent users getting bested by future phishing attempts, Google has encouraged its users to set up two-factor authentication and update their passwords. The company has also warned users never to click on emails with alerts such as "suspicious sign in prevented," which are commonly used by hackers during periods of increased cybersecurity warnings. Instead, users should check security alerts on their own — more on how to do that below.

How to check your Google security activity

Total Time
  • 3 min.
What You Need
  • Google account access
  • desktop or mobile app.

Step 1: Log into your Google account.

Go to myaccount.google.com

Step 2: Navigate to "Security".

For desktop users, find this on the left side of the screen next to the padlock icon.

Step 3: Go to "Recent security activity".

Any security alerts in the last 28 days, including new sign-ins, should be visible here. Users can click for more information.

How to change your Gmail password

Total Time
  • 3 min
What You Need
  • Google account access
  • desktop or mobile app

Step 1: Log into your Google account.

Step 2: Navigate to "Security."

Step 3: Scroll to the “How you sign in to Google” section.

Step 4: Click "Password".

Users can also see the last time they changed their password.

Step 5: Log in using your current password one more time.

How to set up 2-Step verification for Google

Total Time
  • 5 min
What You Need
  • Google account access
  • desktop or mobile app

Step 1: Log in to your Google account.

Step 2: Navigate to "Security."

Step 3: Scroll to “How you sign in to Google”.

Step 4: Click "Turn on 2-Step Verification".

Step 5: Follow the steps on-screen.

In order to enable multi factor authentication, users will need to use an on-device passkey, the Google authenticator app (or other third-party authenticator), link a personal phone number, or set up a backup code.



from Mashable https://ift.tt/nWHZlcT
via IFTTT
Labels:

Comments

Post a Comment

Popular posts from this blog

The Nintendo Switch has been the US’s bestselling console for 23 straight months

By
Photo by James Bareham / The Verge It’s been a good two years for the Nintendo Switch. According to Nintendo, the gaming tablet has been the bestselling console in the US for 23 straight months. And according to data from the NPD Group, it just had its best October ever, moving 735,926 units of both the Switch and Switch Lite in the US. The company says that represents a 136 percent increase compared to last year. To date, the Switch has sold 22.5 million units in the US, and last week Nintendo revealed that more than 68 million units have been sold globally . “We’re excited about our momentum,” says Nick Chavez, Nintendo of America’s SVP of sales and marketing. Chavez puts the company’s big October down to two main factors. One is a better supply of stock; this year in particular, it’s often been hard to find a Switch on store shelves. This has only been exacerbated by increased demand due to a combination of the pandemic and the breakout success of Animal Crossing: New Horizons . ...
Post a Comment
Read more

Instagram accidentally reinstated Pornhub’s banned account

By
After years of on-and-off temporary suspensions, Instagram permanently banned Pornhub’s account in September. Then, for a short period of time this weekend, the account was reinstated. By Tuesday, it was permanently banned again. “This was done in error,” an Instagram spokesperson told TechCrunch. “As we’ve said previously, we permanently disabled this Instagram account for repeatedly violating our policies.” Instagram’s content guidelines prohibit  nudity and sexual solicitation . A Pornhub spokesperson told TechCrunch, though, that they believe the adult streaming platform’s account did not violate any guidelines. Instagram has not commented on the exact reasoning for the ban, or which policies the account violated. It’s worrying from a moderation perspective if a permanently banned Instagram account can accidentally get switched back on. Pornhub told TechCrunch that its account even received a notice from Instagram, stating that its ban had been a mistake (that message itse...
Post a Comment
Read more

MVP versus EVP: Is it time to introduce ethics into the agile startup model?

By
Anand Rao Contributor Share on Twitter Anand Rao is global head of AI at PwC . The rocket ship trajectory of a startup is well known: Get an idea, build a team and slap together a minimum viable product (MVP) that you can get in front of users. However, today’s startups need to reconsider the MVP model as artificial intelligence (AI) and machine learning (ML) become ubiquitous in tech products and the market grows increasingly conscious of the ethical implications of AI augmenting or replacing humans in the decision-making process. An MVP allows you to collect critical feedback from your target market that then informs the minimum development required to launch a product — creating a powerful feedback loop that drives today’s customer-led business. This lean, agile model has been extremely successful over the past two decades — launching thousands of successful startups, some of which have grown into billion-dollar companies. However, building high-performing product...
Post a Comment
Read more