Google has warned Gmail users of a wave of cyberattacks aimed at stealing user accounts in recent days, according to a report published by Forbes magazine. The attacks rely on sending malicious links in emails claiming to be official Google messages to reset passwords. When users click these links, they are redirected to fake sites controlled by hackers to collect and steal login data. Google noted that these attacks come after an increase in login attempts with incorrect passwords, making users more vulnerable to phishing messages sent in the company’s name. The method is similar to previous attacks targeting major companies like Amazon, where malicious links sometimes arrived via text messages appearing related to order tracking or returns. Google also detected attacks using fake voicemail messages asking users to log in to listen to voice messages, but the goal is the same: stealing account data.

To reduce the risk of hacking, Google advised users not to click any link in messages that do not bear the company’s official email address, to review passwords using platform tools, and to check login locations and delete any suspicious sites. The company stresses the importance of enabling two-factor authentication or using a device-linked passcode known as Passkey to ensure better account protection. These warnings serve as a continuous reminder that hackers never stop developing their methods, and that user awareness and proper security measures are the first line of defense against cyberattacks.