Google has confirmed that Gmail accounts are now being targeted by more advanced phishing attacks. The company is urging users to improve their account security immediately to stop attackers from stealing login details. These recent attacks are tricky because they copy Google’s official support messages to fool people. According to Check Point, Google is the second most impersonated brand after Microsoft. They also warned, “As we move through 2025, phishing threats will continue to evolve, requiring heightened vigilance.”
Google made it clear that they will never reach out to users about account issues like password resets or troubleshooting. In their words, they will not call you about your account. To help protect users, Google is pushing for the use of passkeys. These are more secure and also make logging in easier. Passkeys can also confirm who you are when making important account changes.
Unlike Microsoft, which wants users to stop using passwords altogether, Google still recommends keeping your password and using two-factor authentication (2FA) as backup. They suggest connecting 2FA to a trusted device or using an authentication app, not SMS-based 2FA.
Read more: Beware Of The Latest Gmail Account Takeover Scam
This warning comes at a time when AI-powered attacks are becoming more common and harder to detect. The FBI has already raised concerns about these threats. Check Point said, “AI threats are no longer theoretical—they’re rapidly evolving.”
This timing also matches World Password Day on May 1. Many companies, including Microsoft, now call it World Passkey Day to encourage users to switch to passkeys. The FIDO Alliance, which supports passkey use, reported that more people around the world are starting to use them. Their CEO, Andrew Shikiar, stressed the need to move away from weak passwords to stop data leaks and account takeovers.
Microsoft has already made passwordless login the default by using their Authenticator app. They don’t support alternatives like Google Authenticator. Meanwhile, Google offers a more flexible approach but says it’s just as urgent to take action now.
Since Gmail gives access to many other platforms, experts say switching to passkeys and upgrading 2FA is essential to stay protected from cyber threats.
Stay tuned to Brandsynario for latest news and updates