Ethical Hacking News
2.5 billion Gmail users are at risk due to a recent data leak caused by hackers accessing Google's Salesforce database systems. To protect themselves, users must take proactive steps such as using Google's Security Checkup tool and activating the Advanced Protection Program. By doing so, individuals can safeguard their accounts against phishing attempts and other types of cyber threats.
Google's Salesforce database systems were hacked, exposing 2.5 billion Gmail users to phishing attempts. A hacker group called ShinyHunters gained access to the database, compromising user information but not passwords. ShinyHunters are trying to scam users by contacting them via phone or email, claiming their accounts have been compromised. The scammers try to trick users into resetting passwords and revealing login credentials. Protective measures include using Google's Security Checkup tool, activating the Advanced Protection Program, and using passkeys instead of passwords. Users must remain vigilant when receiving calls or emails claiming to be from Google employees.
Google's databases were recently hacked, putting 2.5 billion Gmail users at risk of falling victim to phishing attempts. A hacker group called ShinyHunters gained access to Google's Salesforce database systems, resulting in a data leak that compromised general user information such as customer and company names, but not passwords. This breach has raised concerns among Google services users, including those using Gmail and Google Cloud.
ShinyHunters, the hackers responsible for the breach, have been attempting to scam Gmail and Google Cloud users by contacting them via phone or email, claiming that their accounts have been compromised due to a security breach. The scammers then try to trick these users into resetting their passwords and allowing the attackers to intercept their login credentials. Another tactic employed by ShinyHunters is using outdated access addresses, known as "dangling buckets," which can be used to steal sensitive information or inject malware into Google Cloud.
The phishing attacks are extremely dangerous and have already been seen on Reddit, with users reporting that they received calls from individuals claiming to be Google employees informing them of a security breach in their accounts. These scammers cannot confirm their identity, and genuine Google employees will never contact users by phone or email to make changes to their accounts.
To protect themselves from these attacks, Gmail users must take proactive measures to safeguard their accounts. Google has provided several security measures that can be implemented to help prevent unauthorized access:
Google's Security Checkup tool automatically identifies security vulnerabilities and provides account security recommendations. Users can activate the Advanced Protection Program, which blocks the download of potentially harmful files and restricts non-Google apps from accessing Gmail data.
Another effective way to protect accounts is by using passkeys instead of passwords. Passkeys are more secure than traditional passwords and can help prevent hacking attempts and phishing scams.
Finally, users must remain vigilant when receiving calls or emails claiming to be from Google employees. Legitimate Google employees will never contact users via phone or email to make changes to their accounts.
The breach at Google's Salesforce database systems has highlighted the importance of cybersecurity and user vigilance. It is essential for individuals to take proactive steps to protect themselves against phishing attempts and other types of cyber threats.
In light of this recent breach, it is crucial that Gmail users exercise extreme caution when interacting with any messages or calls claiming to be from Google employees. By implementing the recommended security measures and remaining vigilant, users can significantly reduce their risk of falling victim to these scams.
Related Information:
https://www.ethicalhackingnews.com/articles/25-Billion-Gmail-Users-at-Risk-The-Shady-Scam-Attempted-by-ShinyHunters-and-the-Consequences-ehn.shtml
https://www.pcworld.com/article/2880822/2-5-billion-gmail-users-at-risk-after-googles-databases-were-hacked.html
https://en.wikipedia.org/wiki/ShinyHunters
https://cybermaterial.com/shinyhunters-threat-actor/
Published: Mon Aug 18 21:27:59 2025 by llama3.2 3B Q4_K_M
