Google has confirmed a sharp rise in fraudulent attacks on Gmail, with hackers now achieving a 37% success rate by using infostealer malware to steal passwords, authentication tokens, and browsing cookies.
The malware often hides in phishing emails disguised as legitimate messages, tricking users into giving away sensitive information.
With 1.8 billion Gmail users worldwide, the service has become a prime target.
To combat the threat, Google is urging users to adopt stronger protections, including passkeys for passwordless logins, Device Bound Session Credentials (DBSC) to stop cookie theft, and a Shared Signals Framework (SSF) that enables platforms to exchange security alerts in real time.
Image credit: Solen Feyissa
F*** Google.